Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8036630

Null ProtectionDomain in JVM can cause NPE because principals field is not initialized to an empty array

    XMLWordPrintable

Details

    • b08

    Backports

      Description

        Hotspot creates a "null" ProtectionDomain object (basically a PD with a null CodeSource and no permissions) when we do the isAuthorized check. An NPE is thrown if code subsequently calls getPrincipals() on that PD, because hotspot is initializing the principals field to null instead of initializing it with an empty array, like the two public ProtectionDomain constructors do. Right now I can only find a code path affecting debug code, so it is not a critical bug. Attached is a test case, compile and run as:

        java -Djava.security.debug=all Test

        You will see the NPE and stack towards the end of the debug log:

        Exception in thread "main" java.lang.NullPointerException
        at java.security.ProtectionDomain.getPrincipals(ProtectionDomain.java:222)
        at sun.security.provider.PolicyFile.printPD(PolicyFile.java:1774)
        at sun.security.provider.PolicyFile.getPermissions(PolicyFile.java:1178)
        at sun.security.provider.PolicyFile.getPermissions(PolicyFile.java:1132)
        at java.security.ProtectionDomain$2.run(ProtectionDomain.java:367)
        at java.security.ProtectionDomain$2.run(ProtectionDomain.java:364)

        Attachments

          Issue Links

            backported by

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8156135 Null ProtectionDomain in JVM can cause NPE because principals field is not initialized to an empty array

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8156215 Null ProtectionDomain in JVM can cause NPE because principals field is not initialized to an empty array

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8160788 Null ProtectionDomain in JVM can cause NPE because principals field is not initialized to an empty array

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8163628 Null ProtectionDomain in JVM can cause NPE because principals field is not initialized to an empty array

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8167735 Null ProtectionDomain in JVM can cause NPE because principals field is not initialized to an empty array

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Resolved
            relates to

            Bug - A problem which impairs or prevents the functions of the product. JDK-8085903 New fix for memory leak in ProtectionDomain cache

            • P3 - Major loss of function.
            • Closed

            Activity

              People

                coleenp Coleen Phillimore
                mullan Sean Mullan
                Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                  Created:
                  Updated:
                  Resolved: