Fix for PR381 Stackoverflow error with SecurityManager, signed jar and debug
mjw at redhat.com
Sun Aug 30 23:33:55 PDT 2009
The following fixes PR381 Stackoverflow error with SecurityManager,
signed jar and debug. Thanks to Martin and Anil for walking me through
an instance of this issue with JBoss. That made it easy to create a
testcase (also included in the overlays). The fix is in two parts. The
first is and extension of Keith's work to get at the system installed
tzdata. Now doing everything inside an AccessController.doPrivileged
block. The second is a fix for a similar issue in Timezone when
setDefaultZone() is called, which as the testcase shows happens for any
Date.toString() call. A similar fix was also in openjdk7 b22, but
apparently lost since b22 was from "before hg", I took the jdk7 version.
I'll add it to the wiki.
2009-08-31 Mark Wielaard <mjw at redhat.com>
Keith Seitz <keiths at redhat.com>
PR381 Stackoverflow error with SecurityManager, signed jar and debug
* patches/icedtea-use-system-tzdata.patch: Updated to initialize
JAVAZI_DIR once and inside a AccessController.doPrivileged() block.
* patches/icedtea-timezone-default-permission.patch: New patch.
* Makefile.am: Add new patch.
* HACKING: Describe new patch.
See also the discussions in the bug report and on security-dev.
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 10435 bytes
Desc: not available
Url : http://mail.openjdk.java.net/pipermail/distro-pkg-dev/attachments/20090831/8398a1d8/datetimezonepermission.patch
More information about the distro-pkg-dev