You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@tomcat.apache.org by ma...@apache.org on 2021/09/16 20:34:04 UTC
[tomcat] branch 9.0.x updated: Fix BZ 65577 - additional
permissions required by security manager
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch 9.0.x
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/9.0.x by this push:
new beca3b5 Fix BZ 65577 - additional permissions required by security manager
beca3b5 is described below
commit beca3b5a25313a749e7c5070a0c486fb6bfac46e
Author: Mark Thomas <ma...@apache.org>
AuthorDate: Thu Sep 16 21:33:16 2021 +0100
Fix BZ 65577 - additional permissions required by security manager
---
java/org/apache/catalina/security/SecurityClassLoad.java | 2 ++
webapps/docs/changelog.xml | 4 ++++
2 files changed, 6 insertions(+)
diff --git a/java/org/apache/catalina/security/SecurityClassLoad.java b/java/org/apache/catalina/security/SecurityClassLoad.java
index 19b9c21..bf86414 100644
--- a/java/org/apache/catalina/security/SecurityClassLoad.java
+++ b/java/org/apache/catalina/security/SecurityClassLoad.java
@@ -195,6 +195,8 @@ public final class SecurityClassLoad {
loader.loadClass(basePackage + "util.net.SocketWrapperBase$CompletionHandlerCall");
loader.loadClass(basePackage + "util.net.SocketWrapperBase$CompletionState");
loader.loadClass(basePackage + "util.net.SocketWrapperBase$VectoredIOCompletionHandler");
+ loader.loadClass(basePackage + "util.net.TLSClientHelloExtractor");
+ loader.loadClass(basePackage + "util.net.TLSClientHelloExtractor$ExtractorResult");
// security
loader.loadClass(basePackage + "util.security.PrivilegedGetTccl");
loader.loadClass(basePackage + "util.security.PrivilegedSetTccl");
diff --git a/webapps/docs/changelog.xml b/webapps/docs/changelog.xml
index 310c73c..e2f28ac 100644
--- a/webapps/docs/changelog.xml
+++ b/webapps/docs/changelog.xml
@@ -131,6 +131,10 @@
incorrectly report that they had timed out waiting for an allocation
from the connection flow control window. (markt)
</fix>
+ <fix>
+ <bug>65577</bug>: Fix a <code>AccessControlException</code> reporting
+ when running an NIO2 connector with TLS enabled. (markt)
+ </fix>
</changelog>
</subsection>
</section>
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org