ignite-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Anton Vinogradov (JIRA)" <j...@apache.org>
Subject [jira] [Created] (IGNITE-9560) Security permissions to restrict arbitrary code exectution
Date Wed, 12 Sep 2018 14:31:00 GMT
Anton Vinogradov created IGNITE-9560:

             Summary: Security permissions to restrict arbitrary code exectution
                 Key: IGNITE-9560
                 URL: https://issues.apache.org/jira/browse/IGNITE-9560
             Project: Ignite
          Issue Type: Task
          Components: security
    Affects Versions: 2.6
            Reporter: Anton Vinogradov

{{SecurityPermission}} class should be extended to cover all cases able to cause arbitrary
code execution.

1) Restriction on listener registration 
- EventStorageSpi listener
- CQ listener 
2) Restriction on closure (able to be executed on the remote node) execution
- Compute API (seems to be covered, should be rechecked)
- Services
- Entry processor
3) We have to make sure that cases listed at #1 and #2 are the all possible cases.

This message was sent by Atlassian JIRA

View raw message