Allow Policy to restrict loading of classes to Signed or message digest checked jar files. #5
Comments
pfirmstone
added a commit
that referenced
this issue
Nov 1, 2024
…st checked jar files. #5 Added LoadClassPermission, modified SecureClassLoader to check the CodeSource has LoadClassPermission before loading.
pfirmstone
added a commit
that referenced
this issue
Nov 15, 2024
…st checked jar files. #5 Preliminary code to remove permission implementations from Java API, use a Service (Provider may be more appropriate). Note that for user permissions we want to use a module containing the permission to effectively represent a domain with minimal permission on the call stack, to allow permissions granted to a user to be the limiting factor. We likely need separate modules for code and user granted permissions. Eg LoadClassPermission is granted to a Signer, or positive message digest is a code based permission.
pfirmstone
added a commit
that referenced
this issue
Nov 15, 2024
…st checked jar files. #5 SecureClassLoader is a bootstrap class and cannot use higher level language features.
pfirmstone
added a commit
that referenced
this issue
Nov 19, 2024
…st checked jar files. #5 Added LoadClassPermission, modified SecureClassLoader to check the CodeSource has LoadClassPermission before loading.
pfirmstone
added a commit
that referenced
this issue
Nov 19, 2024
…st checked jar files. #5 Preliminary code to remove permission implementations from Java API, use a Service (Provider may be more appropriate). Note that for user permissions we want to use a module containing the permission to effectively represent a domain with minimal permission on the call stack, to allow permissions granted to a user to be the limiting factor. We likely need separate modules for code and user granted permissions. Eg LoadClassPermission is granted to a Signer, or positive message digest is a code based permission.
pfirmstone
added a commit
that referenced
this issue
Nov 19, 2024
…st checked jar files. #5 SecureClassLoader is a bootstrap class and cannot use higher level language features.
|
For now, I've decided to not copy httmd message digests from JGDMS, as these are for network file connections, we'll look at implementing message digests at a later date for files, Policy can restrict loading with Signer certificate's. |
pfirmstone
added a commit
that referenced
this issue
Nov 30, 2024
…st checked jar files. #5 Fix tests impacted by LoadPermission
pfirmstone
added a commit
that referenced
this issue
Dec 1, 2024
…st checked jar files. #5 Fix tests broken by LoadClassPermission.
pfirmstone
added a commit
that referenced
this issue
Dec 2, 2024
…st checked jar files. #5 Fix test failures caused by LoadClassPermission
pfirmstone
added a commit
that referenced
this issue
Dec 2, 2024
…st checked jar files. #5 Fix test failures caused by LoadClassPermission
pfirmstone
added a commit
that referenced
this issue
Dec 2, 2024
…st checked jar files. #5 Fix test failures caused by LoadClassPermission
pfirmstone
added a commit
that referenced
this issue
Dec 5, 2024
…st checked jar files. #5 Fix test failure cause by missing LoadClassPermission
pfirmstone
added a commit
that referenced
this issue
Dec 5, 2024
…st checked jar files. #5 Fix test failure caused by missing LoadClassPermission
pfirmstone
added a commit
that referenced
this issue
Dec 5, 2024
…st checked jar files. #5 Fix test failures caused by LoadClassPermission
pfirmstone
added a commit
that referenced
this issue
Dec 6, 2024
…st checked jar files. #5 Fix test failure caused by LoadClassPermission
pfirmstone
added a commit
that referenced
this issue
Dec 6, 2024
…st checked jar files. #5 Fix text failure cause by missing LoadClassPermission
1 task
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
The JVM has no mechanism to prevent loading of classes from untrusted sources.
The text was updated successfully, but these errors were encountered: