[
https://issues.apache.org/jira/browse/FELIX-1286?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Richard S. Hall closed FELIX-1286.
----------------------------------
Resolution: Fixed
Committed a fix.
> Module class loader should use secure action instead of a privileged block
> --------------------------------------------------------------------------
>
> Key: FELIX-1286
> URL: https://issues.apache.org/jira/browse/FELIX-1286
> Project: Felix
> Issue Type: Bug
> Components: Framework
> Affects Versions: felix-1.8.1
> Reporter: Richard S. Hall
> Assignee: Richard S. Hall
> Fix For: felix-2.0.0
>
>
> Due to some refactoring, the module class loader was no longer being created
> in a privileged block, which was causing difficulties when running Felix with
> the security manager enabled. The refactoring made our existing SecureAction
> approach for performing secure actions in feasible (because the class loader
> became an instance inner class and cannot be created externally anymore). For
> Felix 1.8.1, we just simply wrapped it in a doPrivileged() block, but we
> should change this to use SecureAction operations like getting the
> constructor and invoking it. This may require we add some operations to
> SecureAction or reorganize the existing ones.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
