Issue 3630: CCM spec and Security Service 1.7 do not agree (sec-rev) Source: (, ) Nature: Uncategorized Issue Severity: Summary: The CCM spec changed some of the interfaces in the Security Service to local ones. However, apparenlty some interfaces were not made local that should be made local, if understand things correctly. Here are suggested changes: 1. The SecurityLevel2::TargetCredentials interface is derived from the Credentials object, which the CCM spec made local. This means that the TargetCredentials interface must also be declared local. 2. The SecurityLevel2::SecurityManager interface is apparently locality constrained (please improve/add comment), but the CCM spec does not change its interface to be local. This is a problem since the SecurityManager::remove_own_credentials() method takes a "in Credentials creds" parameter, i.e.: void remove_own_credentials( in Credentials creds ); but the CCM spec changes the Credentials interface to be local. As such, the SecurityLevel2::SecurityManager interface should also be local in the CCM spec in order for the above method to be valid. Resolution: Revised Text: The Components specification made the necessary changes for all relevant interfaces of the Security specifications that were then existent, and these changes can be found in document ptc/99-10-08. They are itemized below as editing instructions in group A. A few new local interfaces were added by the Security RTF since then like TargetCredentials and SecurityManager, and the changes relevant to those are enumerated in editing instructions in group B below. In general the changes involve identifying all locality constrained interface as "local interface" in IDL, and making corresponding changes in the supporting text. Apply Revisions and close issue. Revised Text: All changes are relative to security/00-11-03. Group A: From adopted component specification. Group B: New interfaces added by Security RTF. Group C: Bugs introduced by editor of security/00-11-03. 1. [A] Replace para 261 on page 15-48 by: "Certain interfaces are declared to be local. The locality properties required of them are described in CORBA Core 2.4 Chapter 3 IDL Syntax and Semantics." 2. [A] In para 423 on page 15-81 replace "locality constrained" by "local". 3. [A] In para 472 on page 15-90 replace "locality constrained" by "local". 4. [A] In the specification for parameter "creds immediately following para 476 on page 15-92 replace the phrase "the locality constrained" by "a local". 5. [A] In para 483 on page 15-94 replace "locality constrained" by "local". 6. [B] In para 515 on page 15-100 replace "locality constrained" by "local". 7. [B] In IDL for ReceivedCredentials immediately following para 516 on page 15-101 replace interface ReceivedCredentials : Credentials { // Locality Constrained by local interface ReceivedCredentials : Credentials { 8. [B] In para 524 on page 15-102 replace "locality constrained" by "local". 9. [B] In IDL for TargetCredentials immediately following para 524 on page 15-102 replace interface TargetCredentials : Credentials { // Locality Constrained by local interface TargetCredentials : Credentials { 10.[A] In para 610 on page 15-116 replace "locality constrained" by "local". Also remove para 611 since it merely repeats what is already said in para 610 regarding locality constraint/local. 11.[A] In para 616 on page 15-117 replace "locality constrained" by "local". 12.[A] In para 619 on page 15-118 replace two instances of "locality constrained" by "local". Replace "needs to be not thus constrained" to "need not be local". 13. [A] In para 630 on page 15-120 replace "locality constrained" by "local". 14. [A] In para 634 on page 15-121 replace "locality constrained" by "local". 15. [A] In para 842 on page 15-166 replace "locality constrained" by "local". 16.[A] In para 844 on page 15-166 replace "locality constrained" by "local". 17.[A] In the specification for parameter "creds immediately following para 846 on page 15-167 replace the phrase "the locality constrained" by "a local". 18.[A] In para 860 on page 15-171 replace "locality constrained" by "local". 19.[A] In para 882 on page 15-180 replace "locality constrained" by "local". 20.[A] In para 900 on page 15-183 replace "locality constrained" by "local". 21.[A] In para 916 on page 15-185 replace "locality constrained" by "local". 22.[A] In IDL immediately following para 916 on page 15-185 replace the first line by: local interface AccessDecision { 23.22. [C] In IDL for SecurityLevel1 on page 15-306 Section A.3 change local Current : CORBA::Current { to local interface Current : CORBA::Current { 24.[C] In section A.4 and A.7 make the following changes: 1. Remove all occurrences of the string "// Locality Constrained" 2. replace all occurrences of the string "local" by the string "local interface". 25.[C] In section A.7 replace the string "interface" by the string "local interface" in the lines of IDL that introduce the definition of the interfaces AuditChannel, AuditDecision and AccessDecision. All these appear on page 15-323 immediately preceding section A.8. 26.[A] In para 1751 on page 15-368 replace "locality constrained" by "local". 27.Remove para 1921 on page 395 which defines locality constrained. Since we have removed all occurrences of "locality constrained" from the document, this definition is not needed any more. Actions taken: May 19, 2000: received issue August 3, 2001: closed issue Discussion: End of Annotations:===== Date: Thu, 18 May 2000 14:58:57 -0700 To: issues@omg.org Subject: CCM spec and Security Service 1.7 do not agree Message-ID: <20000518145857.H32498@ece.uci.edu> Mime-Version: 1.0 Content-Disposition: inline User-Agent: Mutt/1.2i From: Ossama Othman Content-Type: text/plain; charset=us-ascii X-UIDL: 6igd9WZJe9!_>e9$lo!! Hi, The CCM spec changed some of the interfaces in the Security Service to local ones. However, apparenlty some interfaces were not made local that should be made local, if understand things correctly. Here are suggested changes: 1. The SecurityLevel2::TargetCredentials interface is derived from the Credentials object, which the CCM spec made local. This means that the TargetCredentials interface must also be declared local. 2. The SecurityLevel2::SecurityManager interface is apparently locality constrained (please improve/add comment), but the CCM spec does not change its interface to be local. This is a problem since the SecurityManager::remove_own_credentials() method takes a "in Credentials creds" parameter, i.e.: void remove_own_credentials( in Credentials creds ); but the CCM spec changes the Credentials interface to be local. As such, the SecurityLevel2::SecurityManager interface should also be local in the CCM spec in order for the above method to be valid. Thanks, -Ossama -- Ossama Othman Distributed Object Computing Laboratory, Univ. of California at Irvine 1024D/F7A394A8 - 84ED AA0B 1203 99E4 1068 70E6 5EB7 5E71 F7A3 94A8 Date: Tue, 19 Dec 2000 14:54:53 -0500 From: Jishnu Mukerji Organization: Hewlett-Packard EIAL, Florham Park NJ USA X-Mailer: Mozilla 4.73 [en] (WinNT; U) X-Accept-Language: en MIME-Version: 1.0 To: secrev@omg.org Subject: Fix for Issue 3630 Content-Type: multipart/mixed; boundary="------------6634E4EA29E73C23D02B1032" X-UIDL: 4c=e9H'1e9e!?e9];!!! Folks, I sent the attached proposal to Polar yesterday to address the objections on the resolution of Issue 3630 that were raised by the AB while reviewing the Security RTF Report. Hopefully a vote will be started on this soon. Cheers, Jishnu. Resolution for Issue 3630: The Components specification made the necessary changes for all relevant interfaces of the Security specifications that were then existent, and these changes can be found in document ptc/99-10-08. They are itemized below as editing instructions in group A. A few new local interfaces were added by the Security RTF since then like TargetCredentials and SecurityManager, and the changes relevant to those are enumerated in editing instructions in group B below. In general the changes involve identifying all locality constrained interface as "loca interface" in IDL, and making corresponding changes in the supporting text. Text changes: All changes are relative to security/00-11-03. Group A: from adopted component specification Group B: new interfaces added by Security RTF Group C: Bugs introduced by editor of security/00-11-03 1. [A] Replace para 261 on page 15-48 by: "Certain interfaces are declared to be local. The locality propertierequired of them are described in CORBA Core 2.4 Chapter 3 IDL Syntax and Semantics." 2. [A] In para 423 on page 15-81 replace "locality constrained" by "local". 3. [A] In para 472 on page 15-90 replace "locality constrained" by "local". 4. [A] In the specification for parameter "creds immediately following para 476 on page 15-92 replace the phrase "the locality constrained" by "a local". 5. [A] In para 483 on page 15-94 replace "locality constrained" by "local". 6. [B] In para 515 on page 15-100 replace "locality constrained" by "local". 7. [B] In IDL for ReceivedCredentials immediately following para 516 on page 15-101 replace interface ReceivedCredentials : Credentials { // Locality Constrained by local interface ReceivedCredentials : Credentials { 8. [B] In para 524 on page 15-102 replace "locality constrained" by "local". 9. [B] In IDL for TargetCredentials immediately following para 524 on page 15-102 replace interface TargetCredentials : Credentials { // Locality Constrained by local interface TargetCredentials : Credentials { 10. [A] In para 610 on page 15-116 replace "locality constrained" by "local". Also remove para 611 since it merely repeats what is already said in para 610 regarding locality constraint/local. 11. [A] In para 616 on page 15-117 replace "locality constrained" by "local". 12. [A] In para 619 on page 15-118 replace two instances of "locality constrained" by "local". 13. [A] In para 630 on page 15-120 replace "locality constrained" by "local". 13. [A] In para 634 on page 15-121 replace "locality constrained" by "local". 14. [A] In para 842 on page 15-166 replace "locality constrained" by "local". 15. [A] In para 844 on page 15-166 replace "locality constrained" by "local". 16. [A] In the specification for parameter "creds immediately following para 846 on page 15-167 replace the phrase "the locality constrained" by "a local". 17. [A] In para 860 on page 15-171 replace "locality constrained" by "local". 18. [A] In para 882 on page 15-180 replace "locality constrained" by "local". 19. [A] In para 890 on page 15-183 replace "locality constrained" by "local". 20. [A] In para 916 on page 15-185 replace "locality constrained" by "local". 21. [A] In IDL immediately following para 916 on page 15-185 replace the first line by: local interface AccessDecision { 22. [C] In IDL for SecurityLevel1 on page 15-306 Section A.3 change local Current : CORBA::Current { to local interface Current : CORBA::Current { 23. [C] In section A.4 and A.7 make the following changes: 1. Remove all occurences of the string "// Locality Constrained" 2. replace all occurences of the string "local" by the string "local interface". 24. [C] In section A.7 replace the string "interface" by the string "local interface" in the lines of IDL that introduce the definition of the interfaces AuditChannel, AuditDecision and AccessDecision. All these appear on page 15-323 immediately preceding section A.8. 25. [A] In para 1751 on page 15-368 replace "locality constrained" by "local". 26. Remove para 1921 on page 395 which defines locality constrained. Since we have removed all occurences of "locality constrained" from the document, this definition is not needed any more.