commit d8f73da96a6e20ca0e2c0ffc19e2c70cfc0e49b4
author Karl Pauls <pauls@apache.org> Tue Dec 16 15:50:06 2008 +0000
committer Karl Pauls <pauls@apache.org> Tue Dec 16 15:50:06 2008 +0000
tree df82350a2614399d76c091ddebc7f24e015896a2
parent ea15d9b903e107410051349f3b8ba129d5bade5c

Use doPriv to get PackageAdmin reference otherwise we might have somebody with not enough permissions on the stack (FELIX-849).

git-svn-id: https://svn.apache.org/repos/asf/felix/trunk@727069 13f79535-47bb-0310-9956-ffa450edef68

framework.security/src/main/java/org/apache/felix/framework/security/util/Permissions.java

diff --git a/framework.security/src/main/java/org/apache/felix/framework/security/util/Permissions.java b/framework.security/src/main/java/org/apache/felix/framework/security/util/Permissions.java
index 2b359dc..1eb5660 100644
--- a/framework.security/src/main/java/org/apache/felix/framework/security/util/Permissions.java
+++ b/framework.security/src/main/java/org/apache/felix/framework/security/util/Permissions.java
@@ -26,6 +26,7 @@
 import java.security.AllPermission;
 import java.security.Permission;
 import java.security.PermissionCollection;
+import java.security.*;
 import java.util.Enumeration;
 import java.util.HashMap;
 import java.util.HashSet;
@@ -464,9 +465,12 @@
         return null;
     }
 
-    private Permission createPermission(PermissionInfo permissionInfo,
-        Class target)
+    private Permission createPermission(final PermissionInfo permissionInfo,
+        final Class target)
     {
+        return (Permission) AccessController.doPrivileged(new PrivilegedAction() {
+            public Object run()
+            {
         Permission cached = getFromCache(permissionInfo.getEncoded(), target);
 
         if (cached != null)
@@ -539,6 +543,7 @@
         }
 
         return null;
+        }});
     }
 
     private Permission createPermission(String name, String action, Class target)