WSO2 SP is affected after applying the mitigation steps that are provided in the following link https://docs.wso2.com/pages/viewpage.action?pageId=180948677

[Gaurav-sen1]

Description:
WSO2 SP is affected after applying the mitigation steps that are provided in the following link https://docs.wso2.com/pages/viewpage.action?pageId=180948677

WSO SP is throwing below exceptions after applying CVE-2021-44228-mitigation.sh on it.

Logs
Can't load log handler "java.util.logging.FileHandler"
java.io.FileNotFoundException: logs/carbon.log (Permission denied)
java.io.FileNotFoundException: logs/carbon.log (Permission denied)
at java.io.FileOutputStream.open0(Native Method)
at java.io.FileOutputStream.open(FileOutputStream.java:270)
at java.io.FileOutputStream.(FileOutputStream.java:213)
at java.io.FileOutputStream.(FileOutputStream.java:133)
at java.util.logging.FileHandler.open(FileHandler.java:228)
at java.util.logging.FileHandler.rotate(FileHandler.java:680)
at java.util.logging.FileHandler.openFiles(FileHandler.java:557)
at java.util.logging.FileHandler.(FileHandler.java:281)
at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62)
at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)
at java.lang.reflect.Constructor.newInstance(Constructor.java:423)
at java.lang.Class.newInstance(Class.java:442)
at java.util.logging.LogManager$5.run(LogManager.java:966)
at java.security.AccessController.doPrivileged(Native Method)
at java.util.logging.LogManager.loadLoggerHandlers(LogManager.java:958)
at java.util.logging.LogManager.initializeGlobalHandlers(LogManager.java:1578)
at java.util.logging.LogManager.access$1500(LogManager.java:145)
at java.util.logging.LogManager$RootLogger.accessCheckedHandlers(LogManager.java:1667)
at java.util.logging.Logger.getHandlers(Logger.java:1777)
at java.util.logging.Logger.log(Logger.java:735)
at java.util.logging.Logger.doLog(Logger.java:765)
at java.util.logging.Logger.log(Logger.java:876)
at org.wso2.carbon.launcher.Main.writePID(Main.java:220)
at org.wso2.carbon.launcher.Main.main(Main.java:79)
[2022-03-22 10:50:55,479] WARNING {org.wso2.carbon.launcher.Main writePID} - Cannot write process ID '34' to '/home/wso2carbon/wso2sp-4.4.0/wso2/manager/runtime.pid' file.
java.nio.file.AccessDeniedException: /home/wso2carbon/wso2sp-4.4.0/wso2/manager/runtime.pid
at sun.nio.fs.UnixException.translateToIOException(UnixException.java:84)
at sun.nio.fs.UnixException.rethrowAsIOException(UnixException.java:102)
at sun.nio.fs.UnixException.rethrowAsIOException(UnixException.java:107)
at sun.nio.fs.UnixFileSystemProvider.newByteChannel(UnixFileSystemProvider.java:214)
at java.nio.file.spi.FileSystemProvider.newOutputStream(FileSystemProvider.java:434)
at java.nio.file.Files.newOutputStream(Files.java:216)
at java.nio.file.Files.write(Files.java:3292)
at org.wso2.carbon.launcher.Main.writePID(Main.java:218)
at org.wso2.carbon.launcher.Main.main(Main.java:79)

[2022-03-22 10:50:56,097] SEVERE {org.wso2.carbon.launcher.Main main} - Error initializing storage.
java.lang.RuntimeException: Error initializing storage.
at org.wso2.carbon.launcher.CarbonServer.start(CarbonServer.java:94)
at org.wso2.carbon.launcher.Main.main(Main.java:84)
Caused by: java.lang.RuntimeException: Error initializing storage.
at org.eclipse.osgi.internal.framework.EquinoxContainer.(EquinoxContainer.java:68)
at org.eclipse.osgi.launch.Equinox.(Equinox.java:31)
at org.eclipse.osgi.launch.EquinoxFactory.newFramework(EquinoxFactory.java:24)
at org.wso2.carbon.launcher.CarbonServer.start(CarbonServer.java:73)
... 1 more
Caused by: java.io.FileNotFoundException: /home/wso2carbon/wso2sp-4.4.0/wso2/manager/configuration/org.eclipse.osgi/.manager/.fileTableLock (Permission denied)
at java.io.RandomAccessFile.open0(Native Method)
at java.io.RandomAccessFile.open(RandomAccessFile.java:316)
at java.io.RandomAccessFile.(RandomAccessFile.java:243)
at org.eclipse.osgi.internal.location.Locker_JavaNio.lock(Locker_JavaNio.java:36)
at org.eclipse.osgi.storagemanager.StorageManager.lock(StorageManager.java:388)
at org.eclipse.osgi.storagemanager.StorageManager.open(StorageManager.java:701)
at org.eclipse.osgi.storage.Storage.getChildStorageManager(Storage.java:1785)
at org.eclipse.osgi.storage.Storage.getInfoInputStream(Storage.java:1802)
at org.eclipse.osgi.storage.Storage.(Storage.java:128)
at org.eclipse.osgi.storage.Storage.createStorage(Storage.java:87)
at org.eclipse.osgi.internal.framework.EquinoxContainer.(EquinoxContainer.java:66)
... 4 more

Affected Product Version:
Affected Product Version: WSO2 SP v4.4.0

OS, DB, other environment details and versions:
Cloud - AWS
ENV - EKS Cluster