felix-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Richard S. Hall (JIRA)" <j...@apache.org>
Subject [jira] Closed: (FELIX-1286) Module class loader should use secure action instead of a privileged block
Date Tue, 30 Jun 2009 20:32:47 GMT

     [ https://issues.apache.org/jira/browse/FELIX-1286?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel

Richard S. Hall closed FELIX-1286.

    Resolution: Fixed

Committed a fix.

> Module class loader should use secure action instead of a privileged block
> --------------------------------------------------------------------------
>                 Key: FELIX-1286
>                 URL: https://issues.apache.org/jira/browse/FELIX-1286
>             Project: Felix
>          Issue Type: Bug
>          Components: Framework
>    Affects Versions: felix-1.8.1
>            Reporter: Richard S. Hall
>            Assignee: Richard S. Hall
>             Fix For: felix-2.0.0
> Due to some refactoring, the module class loader was no longer being created in a privileged
block, which was causing difficulties when running Felix with the security manager enabled.
The refactoring made our existing SecureAction approach for performing secure actions in feasible
(because the class loader became an instance inner class and cannot be created externally
anymore). For Felix 1.8.1, we just simply wrapped it in a doPrivileged() block, but we should
change this to use SecureAction operations like getting the constructor and invoking it. This
may require we add some operations to SecureAction or reorganize the existing ones.

This message is automatically generated by JIRA.
You can reply to this email to add a comment to the issue online.

View raw message