[tomcat] branch 9.0.x updated: Fix BZ 65577 - additional permissions required by security manager

Thu, 16 Sep 2021 13:34:09 -0700 

This is an automated email from the ASF dual-hosted git repository.

markt pushed a commit to branch 9.0.x
in repository https://gitbox.apache.org/repos/asf/tomcat.git


The following commit(s) were added to refs/heads/9.0.x by this push:
     new beca3b5  Fix BZ 65577 - additional permissions required by security 
manager
beca3b5 is described below

commit beca3b5a25313a749e7c5070a0c486fb6bfac46e
Author: Mark Thomas <ma...@apache.org>
AuthorDate: Thu Sep 16 21:33:16 2021 +0100

    Fix BZ 65577 - additional permissions required by security manager
---
 java/org/apache/catalina/security/SecurityClassLoad.java | 2 ++
 webapps/docs/changelog.xml                               | 4 ++++
 2 files changed, 6 insertions(+)

diff --git a/java/org/apache/catalina/security/SecurityClassLoad.java 
b/java/org/apache/catalina/security/SecurityClassLoad.java
index 19b9c21..bf86414 100644
--- a/java/org/apache/catalina/security/SecurityClassLoad.java
+++ b/java/org/apache/catalina/security/SecurityClassLoad.java
@@ -195,6 +195,8 @@ public final class SecurityClassLoad {
         loader.loadClass(basePackage + 
"util.net.SocketWrapperBase$CompletionHandlerCall");
         loader.loadClass(basePackage + 
"util.net.SocketWrapperBase$CompletionState");
         loader.loadClass(basePackage + 
"util.net.SocketWrapperBase$VectoredIOCompletionHandler");
+        loader.loadClass(basePackage + "util.net.TLSClientHelloExtractor");
+        loader.loadClass(basePackage + 
"util.net.TLSClientHelloExtractor$ExtractorResult");
         // security
         loader.loadClass(basePackage + "util.security.PrivilegedGetTccl");
         loader.loadClass(basePackage + "util.security.PrivilegedSetTccl");
diff --git a/webapps/docs/changelog.xml b/webapps/docs/changelog.xml
index 310c73c..e2f28ac 100644
--- a/webapps/docs/changelog.xml
+++ b/webapps/docs/changelog.xml
@@ -131,6 +131,10 @@
         incorrectly report that they had timed out waiting for an allocation
         from the connection flow control window. (markt)
       </fix>
+      <fix>
+        <bug>65577</bug>: Fix a <code>AccessControlException</code> reporting
+        when running an NIO2 connector with TLS enabled. (markt)
+      </fix>
     </changelog>
   </subsection>
 </section>

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

Reply via email to