Loading...

XML

Word

Printable

JSON

Type: Task
Resolution: Fixed
Priority: Major - P3
Fix Version/s: 7.1.0-rc0, 7.0.0-rc3
Affects Version/s: None
Component/s: None
Labels:
- neweng
- perf-server-security

Assigned Teams:

Server Security
Backwards Compatibility:
Fully Compatible
Backport Requested:

v7.0
Sprint:
Security 2023-06-12
Confidence Status:
None
Work Order:
3
CAR Domain/s:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name(s):
None
Goal Link:
None

AuthorizationContract exists to validate, in test mode, that the API conforms to the contract specified in IDL. These checks are largely disabled in production code but we should go further and disable the accounting in AuthorizationContract also. For instance, there is no need to take the mutex in AuthorizationContract::addAccessCheck if we are never going to verify the contract.

Assignee:: Adrian Gonzalez Montemayor
Reporter:: Mark Benvenuto
Participants:: Adrian Gonzalez Montemayor, Githook User, Mark Benvenuto
Votes:: 0 Vote for this issue
Watchers:: 3 Start watching this issue

Created:: May 12 2023 07:49:20 PM UTC
Updated:: Oct 29 2023 09:21:32 PM UTC
Resolved:: Jun 06 2023 03:36:46 PM UTC
Confidence Status Last Update:: 01/Jun/23 3:33 PM

Details

Description

Attachments

Forms

Activity

People

Dates