cocodee
diff --git a/‎codec/src/main/java/io/netty/handler/codec/serialization/ClassResolvers.java‎
Lines changed: 2 additions & 2 deletions b/‎codec/src/main/java/io/netty/handler/codec/serialization/ClassResolvers.java‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎common/src/main/java/io/netty/util/Version.java‎
Lines changed: 3 additions & 1 deletion b/‎common/src/main/java/io/netty/util/Version.java‎
Lines changed: 3 additions & 1 deletion
diff --git a/‎common/src/main/java/io/netty/util/internal/JavassistTypeParameterMatcherGenerator.java‎
Lines changed: 2 additions & 2 deletions b/‎common/src/main/java/io/netty/util/internal/JavassistTypeParameterMatcherGenerator.java‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎common/src/main/java/io/netty/util/internal/PlatformDependent.java‎
Lines changed: 28 additions & 7 deletions b/‎common/src/main/java/io/netty/util/internal/PlatformDependent.java‎
Lines changed: 28 additions & 7 deletions
diff --git a/‎common/src/main/java/io/netty/util/internal/PlatformDependent0.java‎
Lines changed: 42 additions & 1 deletion b/‎common/src/main/java/io/netty/util/internal/PlatformDependent0.java‎
Lines changed: 42 additions & 1 deletion
diff --git a/‎common/src/main/java/io/netty/util/internal/SystemPropertyUtil.java‎
Lines changed: 13 additions & 2 deletions b/‎common/src/main/java/io/netty/util/internal/SystemPropertyUtil.java‎
Lines changed: 13 additions & 2 deletions
diff --git a/‎example/src/main/java/io/netty/example/http/file/HttpStaticFileServerHandler.java‎
Lines changed: 2 additions & 1 deletion b/‎example/src/main/java/io/netty/example/http/file/HttpStaticFileServerHandler.java‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎example/src/main/java/io/netty/example/http/websocketx/sslserver/WebSocketSslServer.java‎
Lines changed: 3 additions & 2 deletions b/‎example/src/main/java/io/netty/example/http/websocketx/sslserver/WebSocketSslServer.java‎
Lines changed: 3 additions & 2 deletions
diff --git a/‎example/src/main/java/io/netty/example/http/websocketx/sslserver/WebSocketSslServerSslContext.java‎
Lines changed: 5 additions & 3 deletions b/‎example/src/main/java/io/netty/example/http/websocketx/sslserver/WebSocketSslServerSslContext.java‎
Lines changed: 5 additions & 3 deletions
diff --git a/‎example/src/main/java/io/netty/example/securechat/SecureChatSslContextFactory.java‎
Lines changed: 2 additions & 1 deletion b/‎example/src/main/java/io/netty/example/securechat/SecureChatSslContextFactory.java‎
Lines changed: 2 additions & 1 deletion
@@ -90,12 +90,12 @@ static ClassLoader defaultClassLoader(ClassLoader classLoader) {
             return classLoader;
         }
 
-        final ClassLoader contextClassLoader = Thread.currentThread().getContextClassLoader();
+        final ClassLoader contextClassLoader = PlatformDependent.getContextClassLoader();
         if (contextClassLoader != null) {
             return contextClassLoader;
         }
 
-        return ClassResolvers.class.getClassLoader();
+        return PlatformDependent.getClassLoader(ClassResolvers.class);
     }
 
     private ClassResolvers() {
 
@@ -16,6 +16,8 @@
 
 package io.netty.util;
 
+import io.netty.util.internal.PlatformDependent;
+
 import java.io.InputStream;
 import java.net.URL;
 import java.text.ParseException;
@@ -61,7 +63,7 @@ public static Map<String, Version> identify() {
      */
     public static Map<String, Version> identify(ClassLoader classLoader) {
         if (classLoader == null) {
-            classLoader = Thread.currentThread().getContextClassLoader();
+            classLoader = PlatformDependent.getContextClassLoader();
         }
 
         // Collect all properties.
 
@@ -51,9 +51,9 @@ public static ClassPool classPool() {
     }
 
     public static TypeParameterMatcher generate(Class<?> type) {
-        ClassLoader classLoader = Thread.currentThread().getContextClassLoader();
+        ClassLoader classLoader = PlatformDependent.getContextClassLoader();
         if (classLoader == null) {
-            classLoader = ClassLoader.getSystemClassLoader();
+            classLoader = PlatformDependent.getSystemClassLoader();
         }
         return generate(type, classLoader);
     }
 
@@ -387,10 +387,31 @@ public static Queue<Runnable> newMpscQueue() {
         }
     }
 
+    /**
+     * Return the {@link ClassLoader} for the given {@link Class}.
+     */
+    public static ClassLoader getClassLoader(final Class<?> clazz) {
+        return PlatformDependent0.getClassLoader(clazz);
+    }
+
+    /**
+     * Return the context {@link ClassLoader} for the current {@link Thread}.
+     */
+    public static ClassLoader getContextClassLoader() {
+        return PlatformDependent0.getContextClassLoader();
+    }
+
+    /**
+     * Return the system {@link ClassLoader}.
+     */
+    public static ClassLoader getSystemClassLoader() {
+        return PlatformDependent0.getSystemClassLoader();
+    }
+
     private static boolean isAndroid0() {
         boolean android;
         try {
-            Class.forName("android.app.Application", false, ClassLoader.getSystemClassLoader());
+            Class.forName("android.app.Application", false, getSystemClassLoader());
             android = true;
         } catch (Exception e) {
             // Failed to load the class uniquely available in Android.
@@ -517,15 +538,15 @@ private static int javaVersion0() {
             }
 
             try {
-                Class.forName("java.time.Clock", false, Object.class.getClassLoader());
+                Class.forName("java.time.Clock", false, getClassLoader(Object.class));
                 javaVersion = 8;
                 break;
             } catch (Exception e) {
                 // Ignore
             }
 
             try {
-                Class.forName("java.util.concurrent.LinkedTransferQueue", false, BlockingQueue.class.getClassLoader());
+                Class.forName("java.util.concurrent.LinkedTransferQueue", false, getClassLoader(BlockingQueue.class));
                 javaVersion = 7;
                 break;
             } catch (Exception e) {
@@ -591,7 +612,7 @@ private static long maxDirectMemory0() {
         long maxDirectMemory = 0;
         try {
             // Try to get from sun.misc.VM.maxDirectMemory() which should be most accurate.
-            Class<?> vmClass = Class.forName("sun.misc.VM", true, ClassLoader.getSystemClassLoader());
+            Class<?> vmClass = Class.forName("sun.misc.VM", true, getSystemClassLoader());
             Method m = vmClass.getDeclaredMethod("maxDirectMemory");
             maxDirectMemory = ((Number) m.invoke(null)).longValue();
         } catch (Throwable t) {
@@ -606,9 +627,9 @@ private static long maxDirectMemory0() {
             // Now try to get the JVM option (-XX:MaxDirectMemorySize) and parse it.
             // Note that we are using reflection because Android doesn't have these classes.
             Class<?> mgmtFactoryClass = Class.forName(
-                    "java.lang.management.ManagementFactory", true, ClassLoader.getSystemClassLoader());
+                    "java.lang.management.ManagementFactory", true, getSystemClassLoader());
             Class<?> runtimeClass = Class.forName(
-                    "java.lang.management.RuntimeMXBean", true, ClassLoader.getSystemClassLoader());
+                    "java.lang.management.RuntimeMXBean", true, getSystemClassLoader());
 
             Object runtime = mgmtFactoryClass.getDeclaredMethod("getRuntimeMXBean").invoke(null);
 
@@ -662,7 +683,7 @@ private static boolean hasJavassist0() {
         }
 
         try {
-            JavassistTypeParameterMatcherGenerator.generate(Object.class, PlatformDependent.class.getClassLoader());
+            JavassistTypeParameterMatcherGenerator.generate(Object.class, getClassLoader(PlatformDependent.class));
             logger.debug("Javassist: available");
             return true;
         } catch (Throwable t) {
 
@@ -26,6 +26,8 @@
 import java.nio.Buffer;
 import java.nio.ByteBuffer;
 import java.nio.ByteOrder;
+import java.security.AccessController;
+import java.security.PrivilegedAction;
 import java.util.concurrent.atomic.AtomicIntegerFieldUpdater;
 import java.util.concurrent.atomic.AtomicLongFieldUpdater;
 import java.util.concurrent.atomic.AtomicReferenceFieldUpdater;
@@ -50,7 +52,7 @@ final class PlatformDependent0 {
     static {
         boolean directBufferFreeable = false;
         try {
-            Class<?> cls = Class.forName("sun.nio.ch.DirectBuffer", false, PlatformDependent0.class.getClassLoader());
+            Class<?> cls = Class.forName("sun.nio.ch.DirectBuffer", false, getClassLoader(PlatformDependent0.class));
             Method method = cls.getMethod("cleaner");
             if ("sun.misc.Cleaner".equals(method.getReturnType().getName())) {
                 directBufferFreeable = true;
@@ -328,6 +330,45 @@ static <T> AtomicLongFieldUpdater<T> newAtomicLongFieldUpdater(
         return new UnsafeAtomicLongFieldUpdater<T>(UNSAFE, tclass, fieldName);
     }
 
+    static ClassLoader getClassLoader(final Class<?> clazz) {
+        if (System.getSecurityManager() == null) {
+            return clazz.getClassLoader();
+        } else {
+            return AccessController.doPrivileged(new PrivilegedAction<ClassLoader>() {
+                @Override
+                public ClassLoader run() {
+                    return clazz.getClassLoader();
+                }
+            });
+        }
+    }
+
+    static ClassLoader getContextClassLoader() {
+        if (System.getSecurityManager() == null) {
+            return Thread.currentThread().getContextClassLoader();
+        } else {
+            return AccessController.doPrivileged(new PrivilegedAction<ClassLoader>() {
+                @Override
+                public ClassLoader run() {
+                    return Thread.currentThread().getContextClassLoader();
+                }
+            });
+        }
+    }
+
+    static ClassLoader getSystemClassLoader() {
+        if (System.getSecurityManager() == null) {
+            return ClassLoader.getSystemClassLoader();
+        } else {
+            return AccessController.doPrivileged(new PrivilegedAction<ClassLoader>() {
+                @Override
+                public ClassLoader run() {
+                    return ClassLoader.getSystemClassLoader();
+                }
+            });
+        }
+    }
+
     private PlatformDependent0() {
     }
 
 
@@ -18,6 +18,8 @@
 import io.netty.util.internal.logging.InternalLogger;
 import io.netty.util.internal.logging.InternalLoggerFactory;
 
+import java.security.AccessController;
+import java.security.PrivilegedAction;
 import java.util.logging.Level;
 import java.util.logging.Logger;
 import java.util.regex.Pattern;
@@ -64,7 +66,7 @@ public static String get(String key) {
      *         {@code def} if there's no such property or if an access to the
      *         specified property is not allowed.
      */
-    public static String get(String key, String def) {
+    public static String get(final String key, String def) {
         if (key == null) {
             throw new NullPointerException("key");
         }
@@ -74,7 +76,16 @@ public static String get(String key, String def) {
 
         String value = null;
         try {
-            value = System.getProperty(key);
+            if (System.getSecurityManager() == null) {
+                value = System.getProperty(key);
+            } else {
+                value = AccessController.doPrivileged(new PrivilegedAction<String>() {
+                    @Override
+                    public String run() {
+                        return System.getProperty(key);
+                    }
+                });
+            }
         } catch (Exception e) {
             if (!loggedException) {
                 log("Unable to retrieve a system property '" + key + "'; default values will be used.", e);
 
@@ -34,6 +34,7 @@
 import io.netty.handler.codec.http.LastHttpContent;
 import io.netty.handler.stream.ChunkedFile;
 import io.netty.util.CharsetUtil;
+import io.netty.util.internal.SystemPropertyUtil;
 
 import javax.activation.MimetypesFileTypeMap;
 import java.io.File;
@@ -264,7 +265,7 @@ private static String sanitizeUri(String uri) {
         }
 
         // Convert to absolute path.
-        return System.getProperty("user.dir") + File.separator + uri;
+        return SystemPropertyUtil.get("user.dir") + File.separator + uri;
     }
 
     private static final Pattern ALLOWED_FILE_NAME = Pattern.compile("[A-Za-z0-9][-_A-Za-z0-9\\.]*");
 
@@ -20,6 +20,7 @@
 import io.netty.channel.EventLoopGroup;
 import io.netty.channel.nio.NioEventLoopGroup;
 import io.netty.channel.socket.nio.NioServerSocketChannel;
+import io.netty.util.internal.SystemPropertyUtil;
 
 /**
  * A HTTP server which serves Web Socket requests at:
@@ -74,13 +75,13 @@ public static void main(String[] args) throws Exception {
             port = 8443;
         }
 
-        String keyStoreFilePath = System.getProperty("keystore.file.path");
+        String keyStoreFilePath = SystemPropertyUtil.get("keystore.file.path");
         if (keyStoreFilePath == null || keyStoreFilePath.isEmpty()) {
             System.out.println("ERROR: System property keystore.file.path not set. Exiting now!");
             System.exit(1);
         }
 
-        String keyStoreFilePassword = System.getProperty("keystore.file.password");
+        String keyStoreFilePassword = SystemPropertyUtil.get("keystore.file.password");
         if (keyStoreFilePassword == null || keyStoreFilePassword.isEmpty()) {
             System.out.println("ERROR: System property keystore.file.password not set. Exiting now!");
             System.exit(1);
 
@@ -15,6 +15,8 @@
  */
 package io.netty.example.http.websocketx.sslserver;
 
+import io.netty.util.internal.SystemPropertyUtil;
+
 import javax.net.ssl.KeyManagerFactory;
 import javax.net.ssl.SSLContext;
 import java.io.FileInputStream;
@@ -56,14 +58,14 @@ private WebSocketSslServerSslContext() {
         SSLContext serverContext = null;
         try {
             // Key store (Server side certificate)
-            String algorithm = Security.getProperty("ssl.KeyManagerFactory.algorithm");
+            String algorithm = SystemPropertyUtil.get("ssl.KeyManagerFactory.algorithm");
             if (algorithm == null) {
                 algorithm = "SunX509";
             }
 
             try {
-                String keyStoreFilePath = System.getProperty("keystore.file.path");
-                String keyStoreFilePassword = System.getProperty("keystore.file.password");
+                String keyStoreFilePath = SystemPropertyUtil.get("keystore.file.path");
+                String keyStoreFilePassword = SystemPropertyUtil.get("keystore.file.password");
 
                 KeyStore ks = KeyStore.getInstance("JKS");
                 FileInputStream fin = new FileInputStream(keyStoreFilePath);
 
@@ -16,6 +16,7 @@
 package io.netty.example.securechat;
 
 import io.netty.handler.ssl.SslHandler;
+import io.netty.util.internal.SystemPropertyUtil;
 
 import java.security.KeyStore;
 import java.security.SecureRandom;
@@ -57,7 +58,7 @@ public final class SecureChatSslContextFactory {
     private static final SSLContext CLIENT_CONTEXT;
 
     static {
-        String algorithm = Security.getProperty("ssl.KeyManagerFactory.algorithm");
+        String algorithm = SystemPropertyUtil.get("ssl.KeyManagerFactory.algorithm");
         if (algorithm == null) {
             algorithm = "SunX509";
         }
Original file line number	Diff line number	Diff line change
`@@ -90,12 +90,12 @@ static ClassLoader defaultClassLoader(ClassLoader classLoader) {`
`90`	`90`	`return classLoader;`
`91`	`91`	`}`
`92`	`92`
`93`		`- final ClassLoader contextClassLoader = Thread.currentThread().getContextClassLoader();`
	`93`	`+ final ClassLoader contextClassLoader = PlatformDependent.getContextClassLoader();`
`94`	`94`	`if (contextClassLoader != null) {`
`95`	`95`	`return contextClassLoader;`
`96`	`96`	`}`
`97`	`97`
`98`		`- return ClassResolvers.class.getClassLoader();`
	`98`	`+ return PlatformDependent.getClassLoader(ClassResolvers.class);`
`99`	`99`	`}`
`100`	`100`
`101`	`101`	`private ClassResolvers() {`
Original file line number	Diff line number	Diff line change
`@@ -51,9 +51,9 @@ public static ClassPool classPool() {`
`51`	`51`	`}`
`52`	`52`
`53`	`53`	`public static TypeParameterMatcher generate(Class<?> type) {`
`54`		`- ClassLoader classLoader = Thread.currentThread().getContextClassLoader();`
	`54`	`+ ClassLoader classLoader = PlatformDependent.getContextClassLoader();`
`55`	`55`	`if (classLoader == null) {`
`56`		`- classLoader = ClassLoader.getSystemClassLoader();`
	`56`	`+ classLoader = PlatformDependent.getSystemClassLoader();`
`57`	`57`	`}`
`58`	`58`	`return generate(type, classLoader);`
`59`	`59`	`}`
Original file line number	Diff line number	Diff line change
`@@ -34,6 +34,7 @@`
`34`	`34`	`import io.netty.handler.codec.http.LastHttpContent;`
`35`	`35`	`import io.netty.handler.stream.ChunkedFile;`
`36`	`36`	`import io.netty.util.CharsetUtil;`
	`37`	`+import io.netty.util.internal.SystemPropertyUtil;`
`37`	`38`
`38`	`39`	`import javax.activation.MimetypesFileTypeMap;`
`39`	`40`	`import java.io.File;`
`@@ -264,7 +265,7 @@ private static String sanitizeUri(String uri) {`
`264`	`265`	`}`
`265`	`266`
`266`	`267`	`// Convert to absolute path.`
`267`		`- return System.getProperty("user.dir") + File.separator + uri;`
	`268`	`+ return SystemPropertyUtil.get("user.dir") + File.separator + uri;`
`268`	`269`	`}`
`269`	`270`
`270`	`271`	`private static final Pattern ALLOWED_FILE_NAME = Pattern.compile("[A-Za-z0-9][-_A-Za-z0-9\\.]*");`