You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@logging.apache.org by GitBox <gi...@apache.org> on 2022/08/22 20:02:06 UTC

[GitHub] [logging-log4j2] ppkarwasz commented on pull request #1008: LOG4J2-3579 Calls ServiceLoader with caller's security context

ppkarwasz commented on PR #1008:
URL: https://github.com/apache/logging-log4j2/pull/1008#issuecomment-1222888125

   @boris-unckel, does this change solve your problem?
   
   The `AccessControl.doPrivileged` is called from the caller's domain using a `PrivilegedAction` also in the caller's domain.
   
   As a result all calls to `ServiceLoaderUtil.loadServices` from inside `log4j-api` and `log4j-core` succeed, but a call from inside the Wildfly test code does not (as expected).
   
   This prevents from using this tool from an unprivileged domain.


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: notifications-unsubscribe@logging.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org