From 8522f44d6eeeeeedec00b8a5ae62699f29b8d995 Mon Sep 17 00:00:00 2001 From: mullan Date: Fri, 1 Mar 2013 16:12:50 -0500 Subject: [PATCH] 8008908: Access denied when invoking Subject.doAsPrivileged() Summary: wildcard principal names are not processed correctly Reviewed-by: xuelei --- .../sun/security/provider/PolicyFile.java | 22 ++++- .../PolicyFile/WildcardPrincipalName.java | 94 +++++++++++++++++++ .../provider/PolicyFile/wildcard.policy | 7 ++ 3 files changed, 119 insertions(+), 4 deletions(-) create mode 100644 test/sun/security/provider/PolicyFile/WildcardPrincipalName.java create mode 100644 test/sun/security/provider/PolicyFile/wildcard.policy diff --git a/src/share/classes/sun/security/provider/PolicyFile.java b/src/share/classes/sun/security/provider/PolicyFile.java index 5ea389b51..f92e1d590 100644 --- a/src/share/classes/sun/security/provider/PolicyFile.java +++ b/src/share/classes/sun/security/provider/PolicyFile.java @@ -1336,10 +1336,9 @@ public class PolicyFile extends java.security.Policy { if (pppe.isWildcardName()) { // a wildcard name matches any principal with the same class - for (Principal p : principals) { - if (pppe.principalClass.equals(p.getClass().getName())) { - continue; - } + if (wildcardPrincipalNameImplies(pppe.principalClass, + principals)) { + continue; } if (debug != null) { debug.println("evaluation (principal name wildcard) failed"); @@ -1414,6 +1413,21 @@ public class PolicyFile extends java.security.Policy { addPerms(perms, principals, entry); } + /** + * Returns true if the array of principals contains at least one + * principal of the specified class. + */ + private static boolean wildcardPrincipalNameImplies(String principalClass, + Principal[] principals) + { + for (Principal p : principals) { + if (principalClass.equals(p.getClass().getName())) { + return true; + } + } + return false; + } + private void addPerms(Permissions perms, Principal[] accPs, PolicyEntry entry) { diff --git a/test/sun/security/provider/PolicyFile/WildcardPrincipalName.java b/test/sun/security/provider/PolicyFile/WildcardPrincipalName.java new file mode 100644 index 000000000..d81149d03 --- /dev/null +++ b/test/sun/security/provider/PolicyFile/WildcardPrincipalName.java @@ -0,0 +1,94 @@ +/* + * Copyright (c) 2013, Oracle and/or its affiliates. All rights reserved. + * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. + * + * This code is free software; you can redistribute it and/or modify it + * under the terms of the GNU General Public License version 2 only, as + * published by the Free Software Foundation. + * + * This code is distributed in the hope that it will be useful, but WITHOUT + * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or + * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License + * version 2 for more details (a copy is included in the LICENSE file that + * accompanied this code). + * + * You should have received a copy of the GNU General Public License version + * 2 along with this work; if not, write to the Free Software Foundation, + * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. + * + * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA + * or visit www.oracle.com if you need additional information or have any + * questions. + */ + +/* + * @test + * @bug 8008908 + * @summary wildcard principal names are not processed correctly + * @run main/othervm/policy=wildcard.policy WildcardPrincipalName + */ + +import java.security.AccessController; +import java.security.Permission; +import java.security.Principal; +import java.security.PrivilegedAction; +import java.util.HashSet; +import java.util.PropertyPermission; +import java.util.Set; +import javax.security.auth.Subject; +import javax.security.auth.x500.X500Principal; + +public class WildcardPrincipalName { + + public static void main(String[] args) throws Exception { + + X500Principal duke = new X500Principal("CN=Duke"); + PropertyPermission pp = new PropertyPermission("user.home", "read"); + RunAsPrivilegedUserAction runAsPrivilegedUserAction + = new RunAsPrivilegedUserAction(duke, + new CheckPermissionAction(pp)); + AccessController.doPrivileged(runAsPrivilegedUserAction); + System.out.println("test PASSED"); + } + + private static class RunAsPrivilegedUserAction + implements PrivilegedAction { + private final PrivilegedAction action; + private final Principal principal; + + RunAsPrivilegedUserAction(Principal principal, + PrivilegedAction action) { + this.principal = principal; + this.action = action; + } + + @Override public Void run() { + Set principals = new HashSet<>(); + Set publicCredentials = new HashSet<>(); + Set privateCredentials = new HashSet<>(); + + principals.add(principal); + Subject subject = new Subject(true, + principals, + publicCredentials, + privateCredentials); + + Subject.doAsPrivileged(subject, action, null); + return null; + } + } + + private static class CheckPermissionAction + implements PrivilegedAction { + private final Permission permission; + + CheckPermissionAction(Permission permission) { + this.permission = permission; + } + + @Override public Void run() { + AccessController.checkPermission(permission); + return null; + } + } +} diff --git a/test/sun/security/provider/PolicyFile/wildcard.policy b/test/sun/security/provider/PolicyFile/wildcard.policy new file mode 100644 index 000000000..55e942db3 --- /dev/null +++ b/test/sun/security/provider/PolicyFile/wildcard.policy @@ -0,0 +1,7 @@ +grant principal javax.security.auth.x500.X500Principal * { + permission java.util.PropertyPermission "user.home", "read"; +}; + +grant { + permission javax.security.auth.AuthPermission "doAsPrivileged"; +}; -- GitLab