From: thomas at tada.se (Thomas Hallgren) Date: Wed, 27 May 2009 08:07:00 +0200 Subject: [Pljava-dev] threads left running after function end In-Reply-To: References: <48EE9159.2090303@ejurka.com> <48EF005E.90207@tada.se> Message-ID: <4A1CD884.3030208@tada.se> Kris Jurka wrote: > Without a fix to this I don't see any alternative to dropping the > trusted version of pljava. > I think the easiest fix would be to prevent a trusted function from ever calling an untrusted function. I don't think that would be too limiting and it should be easy enough to check. The semantic would do something like this: At the point when the SecurityManager is replaced, check if the invocation is nested. If it is, check if the current SecurityManager is the one used by a trusted function. If so, throw an exception. Regards, Thomas Hallgren