[jira] [Work logged] (ARTEMIS-4963) Reject openwire senders that lack SEND permissions on attach

Fri, 02 Aug 2024 08:39:42 -0700 


     [ 
https://issues.apache.org/jira/browse/ARTEMIS-4963?focusedWorklogId=928543&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-928543
 ]

ASF GitHub Bot logged work on ARTEMIS-4963:
-------------------------------------------

                Author: ASF GitHub Bot
            Created on: 02/Aug/24 15:38
            Start Date: 02/Aug/24 15:38
    Worklog Time Spent: 10m 
      Work Description: gemmellr merged PR #5122:
URL: https://github.com/apache/activemq-artemis/pull/5122




Issue Time Tracking
-------------------

    Worklog Id:     (was: 928543)
    Time Spent: 1h  (was: 50m)

> Reject openwire senders that lack SEND permissions on attach
> ------------------------------------------------------------
>
>                 Key: ARTEMIS-4963
>                 URL: https://issues.apache.org/jira/browse/ARTEMIS-4963
>             Project: ActiveMQ Artemis
>          Issue Type: Improvement
>          Components: OpenWire
>    Affects Versions: 2.36.0
>            Reporter: Timothy A. Bish
>            Assignee: Timothy A. Bish
>            Priority: Minor
>          Time Spent: 1h
>  Remaining Estimate: 0h
>
> Currently the Openwire producers are allowed to attach even when the named 
> destination(s) it requests don't offer send permissions to the logged in user 
> (the sends themselves are validated).  The sends from these named or from 
> anonymous producers are checked for permission but only after such things as 
> conversion of the message to Core has happened which leads to unnecessary GC 
> overhead and wasted CPU cycles if the send is going to ultimately be 
> rejected.  
> We should reject Openwire senders on attach (which is what the ActiveMQ 
> 'Classic' broker does) and we should check send permissions prior to 
> unnecessarily converting messages to Core to reduce overhead from anonymous 
> senders that are sending into destinations they cannot write to.  This change 
> doesn't introduce any new security but simply  would respond more quickly and 
> efficiently than the current code would.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
For further information, visit: https://activemq.apache.org/contact

Reply via email to