JSPWiki
  1. JSPWiki
  2. JSPWIKI-129

JSPWIki cannot run under a security manager

    Details

    • Type: Bug Bug
    • Status: In Progress
    • Priority: Major Major
    • Resolution: Unresolved
    • Affects Version/s: 2.4.104, 2.6.0, 2.6.1, 2.6.2, 2.6.3, 2.6.4, 2.8, 2.8.1, 2.8.2, 2.8.3, 2.8.4
    • Fix Version/s: None
    • Labels:
      None
    • Environment:

      All

      Description

      JSPWiki cannot be used when running a security manager. Containers that run by default with a security manager include Oracle Application Server and Tomcat when run with the '-server' option.

      In all cases, the root cause is the same: the security policy for the container needs to include the Permissions needed to execute JSPWiki. However, full enumeration of the Permissions needed is complicated significantly by the fact that JSPWiki does not compartmentalized privileged calls the way it should. For example, any code in JSPWiki that accesses files should be enclosed by AccessController.doPrivileged() blocks.

      The result of our current approach (or rather, lack of privileged code compartmentalization) means that an effective policy cannot be written.

      This bug is to remind ARJ that he needs to work on this. He is currently writing some diagnostic tools that will make this process easier. However, it's going to take a while...

        Issue Links

        There are no Sub-Tasks for this issue.

          Activity

          Hide
          Janne Jalkanen added a comment -

          Is it likely that we can get this completed for 2.8?

          Show
          Janne Jalkanen added a comment - Is it likely that we can get this completed for 2.8?
          Hide
          Andrew Jaquith added a comment -

          Posslbly... I've had to put this aside for a while. Can take a whack at it next week on my transatlantic flight. It's a pretty tough problem to work through, though...

          Show
          Andrew Jaquith added a comment - Posslbly... I've had to put this aside for a while. Can take a whack at it next week on my transatlantic flight. It's a pretty tough problem to work through, though...
          Hide
          Janne Jalkanen added a comment -

          Can we then just drop this off the 2.8 feature list? That way it wouldn't be blocking... Besides, since we'll have all the libraries within JSPWiki which do not support this either, I'm not sure whether we can even have a complete solution.

          Show
          Janne Jalkanen added a comment - Can we then just drop this off the 2.8 feature list? That way it wouldn't be blocking... Besides, since we'll have all the libraries within JSPWiki which do not support this either, I'm not sure whether we can even have a complete solution.
          Hide
          Janne Jalkanen added a comment -

          Dropping from 2.8 content, as it does not seem likely that this can be solved in 2.8 timescale.

          Show
          Janne Jalkanen added a comment - Dropping from 2.8 content, as it does not seem likely that this can be solved in 2.8 timescale.
          Hide
          Florian Holeczek added a comment -

          updated affected versions

          Show
          Florian Holeczek added a comment - updated affected versions
          Hide
          Florian Holeczek added a comment -

          see JSPWIKI-698 for a possible workaround

          Show
          Florian Holeczek added a comment - see JSPWIKI-698 for a possible workaround

            People

            • Assignee:
              Andrew Jaquith
              Reporter:
              Andrew Jaquith
            • Votes:
              2 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:

                Development