Bug 1324143

Summary: [GSS](6.4.z) can not read ObjectMessage's object when security manager is set
Product: [JBoss] JBoss Enterprise Application Platform 6 Reporter: Tom Ross <tom.ross>
Component: JMSAssignee: Tom Ross <tom.ross>
Status: CLOSED CURRENTRELEASE QA Contact: Peter Mackay <pmackay>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 6.4.6CC: bmaxwell, dhorton, jmesnil, jtruhlar, msochure, pmackay, rnetuka
Target Milestone: CR1   
Target Release: EAP 6.4.9   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1324262, 1325387    

Description Tom Ross 2016-04-05 15:57:20 UTC 
Description of problem:


Version-Release number of selected component (if applicable):


How reproducible:


Steps to Reproduce:
1.
2.
3.

Actual results:


Expected results:


Additional info:
Comment 1 Tom Ross 2016-04-05 16:01:47 UTC 
When the Java Security Manager is enabled, the ObjectMessage getObject() method fails with a Permission check failed for ("java.lang.RuntimePermission" "getClassLoader").
The code in ObjectInputStreamWithClassLoader must be executed in a privileged access block if the security manager is set to have the proper permission to access the class loader.
Comment 4 Peter Mackay 2016-06-29 08:51:49 UTC 
Verified with EAP 6.4.9.CP.CR2
Comment 5 Petr Penicka 2017-01-17 12:57:34 UTC 
Retroactively bulk-closing issues from released EAP 6.4 cummulative patches.
Comment 6 Petr Penicka 2017-01-17 12:58:20 UTC 
Retroactively bulk-closing issues from released EAP 6.4 cummulative patches.
Comment 7 Petr Penicka 2017-01-17 12:58:40 UTC 
Retroactively bulk-closing issues from released EAP 6.4 cummulative patches.