Loading...

XML

Word

Printable

Type: Bug
Resolution: Duplicate
Priority: Minor
Component/s: script-security-plugin
Labels:
None
Environment:
script-security 1.27

Issue 1) #eachWithIndex blows up unless it is used inside of a method marked as @NonCPS. Eg.

java.lang.UnsupportedOperationException: Calling public static java.util.List org.codehaus.groovy.runtime.DefaultGroovyMethods.eachWithIndex(java.util.List,groovy.lang.Closure) on a CPS-transformed closure is not yet supported (JENKINS-26481); encapsulate in a @NonCPS method, or use Java-style loops

Issue 2) This method is not whitelisted

@NonCPS
def String myjoin(String ... parts) {
 String text = null
def n = parts.size()
 parts.eachWithIndex { x, i ->
   if (text == null) {
     text = x
   } else {
     text += x
   }
   if (i < (n - 1)) {
     text += '/'
   }
  }
  return text
}
echo myjoin('a', 'b')

org.jenkinsci.plugins.scriptsecurity.sandbox.RejectedAccessException: Scripts not permitted to use staticMethod org.codehaus.groovy.runtime.DefaultGroovyMethods eachWithIndex java.lang.Object groovy.lang.Closure

duplicates

JENKINS-26481 Mishandling of binary methods accepting Closure

Resolved

relates to

JENKINS-43484 security sandbox rejects String join method

Open

Assignee:: Unassigned
Reporter:: Joshua Hoblitt
Votes:: 0 Vote for this issue
Watchers:: 2 Start watching this issue

Created:: 2017-04-11 22:14
Updated:: 2017-06-05 14:18
Resolved:: 2017-06-05 14:18

Details

Description

Attachments

Issue Links

Activity

People

Dates