From a055a0035cf75f136478030fa8ec4b21f24988b8 Mon Sep 17 00:00:00 2001
From: Andrew Phillips <demobox1@yahoo.co.uk>
Date: Thu, 28 Mar 2013 18:28:37 -0400
Subject: [PATCH] Not making methods of core Java classes accessible in
 Reflection2

---
 .../java/org/jclouds/reflect/Reflection2.java | 15 +++-
 .../Reflection2CoreJavaClassesTest.java       | 89 +++++++++++++++++++
 2 files changed, 103 insertions(+), 1 deletion(-)
 create mode 100644 core/src/test/java/org/jclouds/reflect/Reflection2CoreJavaClassesTest.java

diff --git a/core/src/main/java/org/jclouds/reflect/Reflection2.java b/core/src/main/java/org/jclouds/reflect/Reflection2.java
index 767f071e3c..abf46b7246 100644
--- a/core/src/main/java/org/jclouds/reflect/Reflection2.java
+++ b/core/src/main/java/org/jclouds/reflect/Reflection2.java
@@ -289,7 +289,9 @@ public class Reflection2 {
                   if (raw == Object.class)
                      continue;
                   for (Method method : raw.getDeclaredMethods()) {
-                     method.setAccessible(true);
+                     if (!coreJavaClass(raw)) {
+                        method.setAccessible(true);
+                     }
                      builder.add(key.method(method));
                   }
                }
@@ -297,6 +299,17 @@ public class Reflection2 {
             }
          });
 
+   private static boolean coreJavaClass(Class<?> clazz) {
+      // treat null packages (e.g. for proxy objects) as "non-core"
+      Package clazzPackage = clazz.getPackage();
+      if (clazzPackage == null) {
+         return false;
+      }
+      String packageName = clazzPackage.getName();
+      return (packageName.startsWith("com.sun.") || packageName.startsWith("java.")
+              || packageName.startsWith("javax.") || packageName.startsWith("sun."));
+   }
+
    /**
     * ensures that exceptions are not doubly-wrapped
     */
diff --git a/core/src/test/java/org/jclouds/reflect/Reflection2CoreJavaClassesTest.java b/core/src/test/java/org/jclouds/reflect/Reflection2CoreJavaClassesTest.java
new file mode 100644
index 0000000000..7fca3da199
--- /dev/null
+++ b/core/src/test/java/org/jclouds/reflect/Reflection2CoreJavaClassesTest.java
@@ -0,0 +1,89 @@
+/**
+ * Licensed to jclouds, Inc. (jclouds) under one or more
+ * contributor license agreements.  See the NOTICE file
+ * distributed with this work for additional information
+ * regarding copyright ownership.  jclouds licenses this file
+ * to you under the Apache License, Version 2.0 (the
+ * "License"); you may not use this file except in compliance
+ * with the License.  You may obtain a copy of the License at
+ *
+ *   http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing,
+ * software distributed under the License is distributed on an
+ * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ * KIND, either express or implied.  See the License for the
+ * specific language governing permissions and limitations
+ * under the License.
+ */
+package org.jclouds.reflect;
+
+import static org.easymock.EasyMock.createNiceMock;
+import static org.easymock.EasyMock.expectLastCall;
+import static org.easymock.EasyMock.replay;
+import static org.jclouds.reflect.Reflection2.methods;
+
+import java.lang.reflect.Method;
+import java.lang.reflect.ReflectPermission;
+
+import org.easymock.IAnswer;
+import org.testng.annotations.AfterClass;
+import org.testng.annotations.BeforeClass;
+import org.testng.annotations.Test;
+
+/**
+ * Tests {@link Reflection2#methods()} on core Java classes where
+ * reflective access may be limited by a {@link SecurityManager}.
+ *
+ * This test has been separated out into a separate class as it modifies
+ * a system-wide setting (the {@code SecurityManager}) and needs to perform 
+ * cleanup to avoid affecting other tests.
+ *
+ * @author Andrew Phillips
+ */
+@Test(singleThreaded = true)
+public class Reflection2CoreJavaClassesTest {
+   private SecurityManager originalSecurityManager;
+   private boolean securityManagerOverridden = false;
+
+   @BeforeClass
+   public void backupSecurityManager() {
+      originalSecurityManager = System.getSecurityManager();
+   }
+
+   public void testCoreJavaMethodsNotMadeAccessible(final Method testMethod) {
+      // a nice mock is required because plenty of other checks will be made
+      SecurityManager mockSecurityManager = createNiceMock(SecurityManager.class);
+      // clunky way of failing if the following method is ever called
+      mockSecurityManager.checkPermission(new ReflectPermission("suppressAccessChecks"));
+      expectLastCall().andStubAnswer(new IAnswer<Void>() {
+            @Override
+            public Void answer() throws Throwable {
+               try {
+                  // generate a stacktrace
+                  throw new Exception();
+               } catch(Exception exception) {
+                  // fail *only* if being called from this test
+                  for (StackTraceElement element : exception.getStackTrace()) {
+                     if (element.getMethodName().equals(testMethod.getName())) {
+                        throw new AssertionError("checkPermission(new ReflectPermission(\"suppressAccessChecks\")) should not be called");
+                     }
+                  }
+               }
+               return null;
+            }
+         });
+      replay(mockSecurityManager);
+      System.setSecurityManager(mockSecurityManager);
+      securityManagerOverridden = true;
+      methods(Enum.class);
+   }
+
+   @AfterClass(alwaysRun = true)
+   public void restoreSecurityManager() {
+      // will only be true if we have permission to set the SecurityManager 
+      if (securityManagerOverridden) {
+         System.setSecurityManager(originalSecurityManager);
+      }
+   }
+}