Uploaded image for project: 'Lucene - Core'
  1. Lucene - Core
  2. LUCENE-9517

BugfixDeflater_JDK8252739 causes Java security issues in JDK 11

    XMLWordPrintableJSON

    Details

    • Lucene Fields:
      New

      Description

      We are running into issues when running Elasticsearch CI with java security turned on and using JDK11 (only for the ones that contains the jdk bug ).   The errors look like:

       

       

      java.security.AccessControlException: access denied ("java.lang.RuntimePermission" "accessDeclaredMembers") 

       

      The issue seems to be here:

      http://hg.openjdk.java.net/jdk/jdk11/file/1ddf9a99e4ad/src/java.base/share/classes/java/util/zip/Deflater.java#l989

      As we now have a subclass that wants to run this code. Note that this code has been removed in JDK12 and above.

      We might need to wrap the creation of this object in a doPriviledged Block or find a different solution that does not need to subclass the Deflater class.

       

      cc: Uwe Schindler

       

       

       

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                uschindler Uwe Schindler
                Reporter:
                ivera Ignacio Vera
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 5h
                  5h