/patches/openjdk/8011139-revise_checking_getenclosingclass.patch

https://bitbucket.org/Ringdingcoder/icedtea6 · Patch · 58 lines · 52 code · 6 blank · 0 comment · 0 complexity · 7f510765bc8a489ef904e66bf0686990 MD5 · raw file 

    

  1. changeset:   4968:2d3faf217561
    2. 

  2. user:        jfranck
    3. 

  3. date:        Thu Apr 18 13:18:28 2013 +0200
    4. 

  4. files:       src/share/classes/java/lang/Class.java
    5. 

  5. description:
    6. 

  6. 8011139: (reflect) Revise checking in getEnclosingClass
    7. 

  7. Reviewed-by: darcy, mchung, ahgross
    8. 

  8. 

  9. 

  10. --- openjdk/jdk/src/share/classes/java/lang/Class.java
    11. 

  11. +++ openjdk/jdk/src/share/classes/java/lang/Class.java
    12. 

  12. @@ -1134,13 +1134,9 @@
    13. 

  13.                  enclosingCandidate = enclosingClass;
    14. 

  14.          }
    15. 

  15.  
    16. 

  16. -        // be very careful not to change the stack depth of this
    17. 

  17. -        // checkMemberAccess call for security reasons
    18. 

  18. -        // see java.lang.SecurityManager.checkMemberAccess
    19. 

  19. -        if (enclosingCandidate != null) {
    20. 

  20. -            enclosingCandidate.checkMemberAccess(Member.DECLARED,
    21. 

  21. -                                                 Reflection.getCallerClass(), true);
    22. 

  22. -        }
    23. 

  23. +        if (enclosingCandidate != null)
    24. 

  24. +            enclosingCandidate.checkPackageAccess(
    25. 

  25. +                    ClassLoader.getClassLoader(Reflection.getCallerClass()), true);
    26. 

  26.          return enclosingCandidate;
    27. 

  27.      }
    28. 

  28.  
    29. 

  29. @@ -2214,6 +2210,8 @@
    30. 

  30.       * Check if client is allowed to access members.  If access is denied,
    31. 

  31.       * throw a SecurityException.
    32. 

  32.       *
    33. 

  33. +     * This method also enforces package access.
    34. 

  34. +     *
    35. 

  35.       * <p> Default policy: allow all clients access with normal Java access
    36. 

  36.       * control.
    37. 

  37.       */
    38. 

  38. @@ -2234,7 +2232,19 @@
    39. 

  39.                  // checkMemberAccess of subclasses of SecurityManager as specified.
    40. 

  40.                  s.checkMemberAccess(this, which);
    41. 

  41.              }
    42. 

  42. +            this.checkPackageAccess(ccl, checkProxyInterfaces);
    43. 

  43. +        }
    44. 

  44. +    }
    45. 

  45.  
    46. 

  46. +    /*
    47. 

  47. +     * Checks if a client loaded in ClassLoader ccl is allowed to access this
    48. 

  48. +     * class under the current package access policy. If access is denied,
    49. 

  49. +     * throw a SecurityException.
    50. 

  50. +     */
    51. 

  51. +    private void checkPackageAccess(final ClassLoader ccl, boolean checkProxyInterfaces) {
    52. 

  52. +        final SecurityManager s = System.getSecurityManager();
    53. 

  53. +        if (s != null) {
    54. 

  54. +            final ClassLoader cl = getClassLoader0();
    55. 

  55.              if (ReflectUtil.needsPackageAccessCheck(ccl, cl)) {
    56. 

  56.                  String name = this.getName();
    57. 

  57.                  int i = name.lastIndexOf('.');
    58.