Uploaded image for project: 'ModeShape'
  1. ModeShape
  2. MODE-497

Wrap system access, context class loader access, and reflection with doPrivileged

    XMLWordPrintable

Details

    Description

      Several activities should make use of the Java SecurityManager to ensure the caller has the appropriate privileges to perform the activity. These activities should be wrapped in a block such as the following:

      String lineSeparator = java.security.AccessController.doPrivileged(
      new java.security.PrivilegedAction<String>() {
      public String run()

      { return System.getProperty("line.separator"); }

      }
      );

      obviously with the correct generic type for whatever is being returned from the run. (Nice and concise, huh? Ugh.)

      We need to go through all of the (non-test) code and add this checking (if it is not already there) when the following types of activities are performed:

      • System.getProperty
      • System.setProperty
      • Thread.currentThread().getContextClassLoader()
      • All code executed via reflection

      Attachments

        Issue Links

          blocks

          Task - Represents a small unit of work that is not end-user facing. MODE-505 Update developer documentation explaining use of Utility methods for instead of doPrivileged

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Activity

            People

              vijay.duvvuri Vijay Kiran (Inactive)
              rhauch Randall Hauch (Inactive)
              Votes:
              1 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: