package java.security;

import java.util.ArrayList;

import java.util.List;

import sun.security.util.Debug;

import sun.security.util.SecurityConstants;

import sun.misc.JavaSecurityAccess;

import sun.misc.SharedSecrets;

public final class AccessControlContext {

private ProtectionDomain context[];

// isPrivileged and isAuthorized are referenced by the VM - do not remove

// or change their names

private boolean isPrivileged;

private boolean isAuthorized = false;

// Note: This field is directly used by the virtual machine

// native codes. Don't touch it.

private AccessControlContext privilegedContext;

private DomainCombiner combiner = null;

private static boolean debugInit = false;

private static Debug debug = null;

static Debug getDebug()

{

if (debugInit)

return debug;

else {

if (Policy.isSet()) {

debug = Debug.getInstance("access");

debugInit = true;

}

return debug;

}

}

/**

public AccessControlContext(ProtectionDomain context[])

{

if (context.length == 0) {

this.context = null;

} else if (context.length == 1) {

if (context[0] != null) {

this.context = context.clone();

} else {

this.context = null;

}

} else {

List<ProtectionDomain> v = new ArrayList<>(context.length);

for (int i =0; i< context.length; i++) {

if ((context[i] != null) && (!v.contains(context[i])))

v.add(context[i]);

}

if (!v.isEmpty()) {

this.context = new ProtectionDomain[v.size()];

this.context = v.toArray(this.context);

}

}

}

/**

public AccessControlContext(AccessControlContext acc,

DomainCombiner combiner) {

SecurityManager sm = System.getSecurityManager();

if (sm != null) {

sm.checkPermission(SecurityConstants.CREATE_ACC_PERMISSION);

this.isAuthorized = true;

}

this.context = acc.context;

// we do not need to run the combine method on the

// provided ACC. it was already "combined" when the

// context was originally retrieved.

//

// at this point in time, we simply throw away the old

// combiner and use the newly provided one.

this.combiner = combiner;

}

/**

AccessControlContext(ProtectionDomain context[], DomainCombiner combiner) {

if (context != null) {

this.context = context.clone();

}

this.combiner = combiner;

this.isAuthorized = true;

}

/**

AccessControlContext(ProtectionDomain context[],

boolean isPrivileged)

{

this.context = context;

this.isPrivileged = isPrivileged;

this.isAuthorized = true;

}

/**

AccessControlContext(ProtectionDomain[] context,

AccessControlContext privilegedContext)

{

this.context = context;

this.privilegedContext = privilegedContext;

this.isPrivileged = true;

}

/**

ProtectionDomain[] getContext() {

return context;

}

/**

boolean isPrivileged()

{

return isPrivileged;

}

/**

DomainCombiner getAssignedCombiner() {

AccessControlContext acc;

if (isPrivileged) {

acc = privilegedContext;

} else {

acc = AccessController.getInheritedAccessControlContext();

}

if (acc != null) {

return acc.combiner;

}

return null;

}

/**

public DomainCombiner getDomainCombiner() {

SecurityManager sm = System.getSecurityManager();

if (sm != null) {

sm.checkPermission(SecurityConstants.GET_COMBINER_PERMISSION);

}

return combiner;

}

/**

public void checkPermission(Permission perm)

throws AccessControlException

{

boolean dumpDebug = false;

if (perm == null) {

throw new NullPointerException("permission can't be null");

}

if (getDebug() != null) {

// If "codebase" is not specified, we dump the info by default.

dumpDebug = !Debug.isOn("codebase=");

if (!dumpDebug) {

// If "codebase" is specified, only dump if the specified code

// value is in the stack.

for (int i = 0; context != null && i < context.length; i++) {

if (context[i].getCodeSource() != null &&

context[i].getCodeSource().getLocation() != null &&

Debug.isOn("codebase=" + context[i].getCodeSource().getLocation().toString())) {

dumpDebug = true;

break;

}

}

}

dumpDebug &= !Debug.isOn("permission=") ||

Debug.isOn("permission=" + perm.getClass().getCanonicalName());

if (dumpDebug && Debug.isOn("stack")) {

Thread.currentThread().dumpStack();

}

if (dumpDebug && Debug.isOn("domain")) {

if (context == null) {

debug.println("domain (context is null)");

} else {

for (int i=0; i< context.length; i++) {

debug.println("domain "+i+" "+context[i]);

}

}

}

}

/*

/* if ctxt is null, all we had on the stack were system domains,

if (context == null)

return;

for (int i=0; i< context.length; i++) {

if (context[i] != null && !context[i].implies(perm)) {

if (dumpDebug) {

debug.println("access denied " + perm);

}

if (Debug.isOn("failure") && debug != null) {

// Want to make sure this is always displayed for failure,

// but do not want to display again if already displayed

// above.

if (!dumpDebug) {

debug.println("access denied " + perm);

}

Thread.currentThread().dumpStack();

final ProtectionDomain pd = context[i];

final Debug db = debug;

AccessController.doPrivileged (new PrivilegedAction<Void>() {

public Void run() {

db.println("domain that failed "+pd);

return null;

}

});

}

throw new AccessControlException("access denied "+perm, perm);

}

}

// allow if all of them allowed access

if (dumpDebug) {

debug.println("access allowed "+perm);

}

return;

}

/**

AccessControlContext optimize() {

// the assigned (privileged or inherited) context

AccessControlContext acc;

if (isPrivileged) {

acc = privilegedContext;

} else {

acc = AccessController.getInheritedAccessControlContext();

}

// this.context could be null if only system code is on the stack;

// in that case, ignore the stack context

boolean skipStack = (context == null);

// acc.context could be null if only system code was involved;

// in that case, ignore the assigned context

boolean skipAssigned = (acc == null || acc.context == null);

if (acc != null && acc.combiner != null) {

// let the assigned acc's combiner do its thing

return goCombiner(context, acc);

}

// optimization: if neither have contexts; return acc if possible

// rather than this, because acc might have a combiner

if (skipAssigned && skipStack) {

return this;

}

// optimization: if there is no stack context; there is no reason

// to compress the assigned context, it already is compressed

if (skipStack) {

return acc;

}

int slen = context.length;

// optimization: if there is no assigned context and the stack length

// is less then or equal to two; there is no reason to compress the

// stack context, it already is

if (skipAssigned && slen <= 2) {

return this;

}

// optimization: if there is a single stack domain and that domain

// is already in the assigned context; no need to combine

if ((slen == 1) && (context[0] == acc.context[0])) {

return acc;

}

int n = (skipAssigned) ? 0 : acc.context.length;

// now we combine both of them, and create a new context

ProtectionDomain pd[] = new ProtectionDomain[slen + n];

// first copy in the assigned context domains, no need to compress

if (!skipAssigned) {

System.arraycopy(acc.context, 0, pd, 0, n);

}

// now add the stack context domains, discarding nulls and duplicates

outer:

for (int i = 0; i < context.length; i++) {

ProtectionDomain sd = context[i];

if (sd != null) {

for (int j = 0; j < n; j++) {

if (sd == pd[j]) {

continue outer;

}

}

pd[n++] = sd;

}

}

// if length isn't equal, we need to shorten the array

if (n != pd.length) {

// optimization: if we didn't really combine anything

if (!skipAssigned && n == acc.context.length) {

return acc;

} else if (skipAssigned && n == slen) {

return this;

}

ProtectionDomain tmp[] = new ProtectionDomain[n];

System.arraycopy(pd, 0, tmp, 0, n);

pd = tmp;

}

// return new AccessControlContext(pd, false);

// Reuse existing ACC

this.context = pd;

this.combiner = null;

this.isPrivileged = false;

return this;

}

private AccessControlContext goCombiner(ProtectionDomain[] current,

AccessControlContext assigned) {

// the assigned ACC's combiner is not null --

// let the combiner do its thing

// XXX we could add optimizations to 'current' here ...

if (getDebug() != null) {

debug.println("AccessControlContext invoking the Combiner");

}

// No need to clone current and assigned.context

// combine() will not update them

ProtectionDomain[] combinedPds = assigned.combiner.combine(

current, assigned.context);

// return new AccessControlContext(combinedPds, assigned.combiner);

// Reuse existing ACC

this.context = combinedPds;

this.combiner = assigned.combiner;

this.isPrivileged = false;

this.isAuthorized = assigned.isAuthorized;

return this;

}

/**

public boolean equals(Object obj) {

if (obj == this)

return true;

if (! (obj instanceof AccessControlContext))

return false;

AccessControlContext that = (AccessControlContext) obj;

if (context == null) {

return (that.context == null);

}

if (that.context == null)

return false;

if (!(this.containsAllPDs(that) && that.containsAllPDs(this)))

return false;

if (this.combiner == null)

return (that.combiner == null);

if (that.combiner == null)

return false;

if (!this.combiner.equals(that.combiner))

return false;

return true;

}

private boolean containsAllPDs(AccessControlContext that) {

boolean match = false;

//

// ProtectionDomains within an ACC currently cannot be null

// and this is enforced by the constructor and the various

// optimize methods. However, historically this logic made attempts

// to support the notion of a null PD and therefore this logic continues

// to support that notion.

ProtectionDomain thisPd;

for (int i = 0; i < context.length; i++) {

match = false;

if ((thisPd = context[i]) == null) {

for (int j = 0; (j < that.context.length) && !match; j++) {

match = (that.context[j] == null);

}

} else {

Class thisPdClass = thisPd.getClass();

ProtectionDomain thatPd;

for (int j = 0; (j < that.context.length) && !match; j++) {

thatPd = that.context[j];

// Class check required to avoid PD exposure (4285406)

match = (thatPd != null &&

thisPdClass == thatPd.getClass() && thisPd.equals(thatPd));

}

}

if (!match) return false;

}

return match;

}

/**

public int hashCode() {

int hashCode = 0;

if (context == null)

return hashCode;

for (int i =0; i < context.length; i++) {

if (context[i] != null)

hashCode ^= context[i].hashCode();

}

return hashCode;

}

}