Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-5523

(7.0.z) Coverity reports possible need to use doPrivileged block for MapToBeanConverter

    XMLWordPrintable

Details

    • EAP 7.0.2

    Description

      Coverity reports possible need to use doPrivileged block for org.jboss.wsf.stack.cxf.client.configuration.MapToBeanConverter
      Please investigate if the doPrivileged block is needed or not

      99   protected Object newInstance(String className) throws Exception {
CID 17469 (#1 of 1): DP: Use doPrivileged (FB.DP_CREATE_CLASSLOADER_INSIDE_DO_PRIVILEGED)1. defect: 
org.jboss.wsf.stack.cxf.client.configuration.MapToBeanConverter.newInstance(String) 
creates a org.jboss.ws.common.utils.DelegateClassLoader classloader, which should be performed within a doPrivileged block.
100      ClassLoader loader = new DelegateClassLoader(ClassLoaderProvider.getDefaultProvider()
101            .getServerIntegrationClassLoader(), SecurityActions.getContextClassLoader());
102      Class<?> clazz = SecurityActions.loadClass(loader, className);
103      return clazz.newInstance();
104   }

      Attachments

        Issue Links

          clones

          Bug - A problem that impairs or prevents the functions of the product. JBWS-3953 Coverity reports possible need to use doPrivileged block for MapToBeanConverter

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Resolved
          is incorporated by

          Component Upgrade - A task tracking an update to a bundled component or revision of component upstream of the project. JBEAP-5271 (7.0.z) Upgrade JBossWS from 5.1.3.SP1 to 5.1.5.Final

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Verified

          Activity

            People

              rhn-engineering-ema Jim Ma
              rhn-cservice-bbaranow Bartosz Baranowski
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: