You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@river.apache.org by "Jonathan Costers (JIRA)" <ji...@apache.org> on 2010/09/18 23:51:33 UTC

[jira] Resolved: (RIVER-183) clarify meaning of "calls from the local host"

     [ https://issues.apache.org/jira/browse/RIVER-183?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Jonathan Costers resolved RIVER-183.
------------------------------------

    Fix Version/s: AR3
       Resolution: Fixed

documented what "local access" means, added unit tests confirming this behaviour and fixed issue with some loopback addresses

> clarify meaning of "calls from the local host"
> ----------------------------------------------
>
>                 Key: RIVER-183
>                 URL: https://issues.apache.org/jira/browse/RIVER-183
>             Project: River
>          Issue Type: Bug
>          Components: com_sun_jini_phoenix
>    Affects Versions: jtsk_2.1
>            Reporter: Dan Creswell
>            Assignee: Jonathan Costers
>            Priority: Minor
>             Fix For: AR3
>
>         Attachments: RIVER-183.patch
>
>
> http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=6305654
> Certain deployment-oriented classes in the com.sun.jini. customer  package:
> 	AccessILFactory
> 	InstantiatorAccessExporter
> 	MonitorAccessExporter
> 	SystemAccessExporter
> 	SystemAccessILFactory
> 	SystemAccessILFactory.SystemDispatcher
> 	SystemAccessProxyTrustILFactory
> describe an access control behavior of only accepting "calls from the local host", but what that means isn't precisely spelled out.
> With the current implementation, it specifically means that if, in the dispatched call, there is a ServerContext and it contains an element that is an instance of ClientHost, then if the InetAddress returned by ClientHost.getClientHost is not a local network interface (according to NetworkInterface.getByInetAddress), the call will be rejected; in all other cases, the call will be accepted.
> This means that a call received because of an IiopExporter will always be accepted (because there will not be a ServerContext at all).  It also means that a call received because of a BasicJeriExporter with a server endpoint that does not populate the inbound request context with a ClientHost will always be accepted-- this could be desirable if the transport provider is local (such as a shared memory transport), but not if the transport provider is non-local but not IP-based, so there is no meaningful ClientHost InetAddress.
> Whether or not the current implementation of "calls from the local host" is ultimately desirable, the documentation should be updated to clarify what it means, so that deployers can make more informed decisions about what kind of access control it provides when combined with different kinds of exporters or JERI transport providers.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.