[JBoss JIRA] (JBTM-2076) Add security manager's permission checking in com.arjuna.webservices11.ServiceRegistry#getRegistry

Wednesday, 20 August 2014

    [
https://issues.jboss.org/browse/JBTM-2076?page=com.atlassian.jira.plugin....
] 

RH Bugzilla Integration commented on JBTM-2076:
-----------------------------------------------

Gytis Trikleris <gtrikler(a)redhat.com&gt; changed the Status of [bug
1054888|https://bugzilla.redhat.com/show_bug.cgi?id=1054888] from MODIFIED to ON_QA

...
 Add security manager's permission checking in
com.arjuna.webservices11.ServiceRegistry#getRegistry

--------------------------------------------------------------------------------------------------

                 Key: JBTM-2076
                 URL: https://issues.jboss.org/browse/JBTM-2076
             Project: JBoss Transaction Manager
          Issue Type: Task
      Security Level: Public(Everyone can see) 
          Components: XTS
            Reporter: Gytis Trikleris
            Assignee: Gytis Trikleris
             Fix For: 4.17.19, 5.0.2

 Permissions checking in public static methods is needed for Common Criteria
certification.
 Add something similar to this at the beginning of the method:
 {code}
 public static ServiceRegistry getRegistry()
 {
     SecurityManager sm = System.getSecurityManager();
     if (sm != null) {
         sm.checkPermission(new RuntimePermission(ServiceRegistry.class.getName() +
".getRegistry"));
     }
     return REGISTRY ;
 }
 {code} 

--
This message was sent by Atlassian JIRA
(v6.2.6#6264)

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007