Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8341482

Attach API access to /proc filesystem should use doPrivileged

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Won't Fix
    • Icon: P4 P4
    • 24
    • None
    • core-svc
    • None


        Updates in JDK-8327114 to the attach API (
        src/jdk.attach/linux/classes/sun/tools/attach/VirtualMachineImpl.java ) access the /proc filesystem using readlink().

        A policy file update enables the test to run, but this area should be using AccessController.doPrivileged(), in case this happens with a Security Manager, and there's untrusted code which then calls into attach (with whatever policy permits that to happen...).

        While SM is planned for removal very soon, it would be good have the doPrivileged in the implementation so any backports can benefit.

              lcable Larry Cable
              kevinw Kevin Walls
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: