Fwd: RFR 7191662: JCE providers should be located via ServiceLoader

Sean Mullan sean.mullan at oracle.com
Wed May 27 23:05:49 UTC 2015


On 05/27/2015 06:35 PM, Valerie Peng wrote:
> In addition, I changed the getArgument() impl in OracleUcrypto provider
> + SunPKCS11 provider to only return the value if the caller has read
> permission to the file. I feel this is probably safer as we don't want
> to reveal the path (potential info leak) to untrusted callers. If the
> callers don't have the right permission, then "" is returned. If you
> prefer SecurityException be thrown, please let me know.

Better yet, maybe we don't need the getArgument method. The argument is 
really only needed for Provider implementations, which get it via the 
constructor. This way we can just have the constructor and not expose 
potentially sensitive info through a public method.

--Sean



More information about the security-dev mailing list