[Aglets-developer] Nonsense in PolicyDB Class
Status: Beta
Brought to you by:
cat4hire
From: Philip W. <phi...@ea...> - 2001-10-07 11:22:12
|
Hello Aglet Developers - I think I found one problem in the aglets security code. This might tie into my aglets.policy problems. The PolicyImpl class refers permission requests to the class PolicyDB. The PolicyDB class has a getPermissions method. Within this getPermissions method, I can see no attempt AT ALL to locate the *appropriate* codebase's PolicyGrant instance that corresponds to the actual passed CodeSource object. That method seems to make no sense at all. Look at it if you'd like to review this finding or if you want to feel astonished. :-) I'll send you a more readable, cleaned up source file if you'd like. Philip Weaver |