[JDK-4135928] codebase not canonicalized properly - Java Bug System

XML

Word

Printable

Details

Type: Bug
Status: Closed
Priority: P3
Resolution: Fixed
Affects Version/s: 1.2.0
Fix Version/s: 1.2.0
Component/s: security-libs
Labels:
- canonicalize
- codebase

Subcomponent:
java.security
Resolved In Build:
1.2beta4
CPU:

generic
OS:

solaris_2.5.1
Verification:
Not verified

Description

charlie.lai@Eng 1998-05-06

when making policy decisions, the codebase is not canonicalized.
this leads to problems where an admin might add an entry in
the policy file -- but at runtime, the application or applet will not be
granted the those permissions because the codebase wasn't canonicalized.

for example in NT, at runtime the codebase may be:
file:/C:\JavaSoft\TESTS
however if the admin enters:
file:/C:\javasoft\tests
as the codebase in the policy file, then the necessary
permissions will NOT be granted to the running code
because the codebases do not match (since they are not canonicalized).

Attachments

Activity

People

Assignee:: Charlie Lai (Inactive)

Reporter:: Charlie Lai (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 1998-05-06 17:19

Updated:: 1999-01-14 18:35

Resolved:: 1999-01-14 18:35

Imported:: 16/Sep/12 1:46 AM

Indexed:: 17/Jul/12 9:47 PM