jdk-sandbox: src/java.base/share/lib/security/default.policy@0937e5f799df (annotated)

39884 9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	1	//
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	2	// Permissions required by modules stored in a run-time image and loaded
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	3	// by the platform class loader.
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	4	//
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	5	// NOTE that this file is not intended to be modified. If additional
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	6	// permissions need to be granted to the modules in this file, it is
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	7	// recommended that they be configured in a separate policy file or
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	8	// ${java.home}/conf/security/java.policy.
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	9	//
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	10
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	11
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	12	grant codeBase "jrt:/java.compiler" {
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	13	permission java.security.AllPermission;
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	14	};
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	15
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	16
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	17	grant codeBase "jrt:/java.scripting" {
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	18	permission java.security.AllPermission;
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	19	};
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	20
39885 5b01da2e0368 8159528: Deprivilege java.security.jgss, jdk.security.jgss and jdk.security.auth weijun parents: 39884 diff changeset	21	grant codeBase "jrt:/java.security.jgss" {
5b01da2e0368 8159528: Deprivilege java.security.jgss, jdk.security.jgss and jdk.security.auth weijun parents: 39884 diff changeset	22	permission java.security.AllPermission;
5b01da2e0368 8159528: Deprivilege java.security.jgss, jdk.security.jgss and jdk.security.auth weijun parents: 39884 diff changeset	23	};
5b01da2e0368 8159528: Deprivilege java.security.jgss, jdk.security.jgss and jdk.security.auth weijun parents: 39884 diff changeset	24
39884 9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	25	grant codeBase "jrt:/java.smartcardio" {
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	26	permission javax.smartcardio.CardPermission "", "";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	27	permission java.lang.RuntimePermission "loadLibrary.j2pcsc";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	28	permission java.lang.RuntimePermission
41812 16d830c87e7b 8168851: Tighten permissions granted to the java.smartcardio module mullan parents: 41603 diff changeset	29	"accessClassInPackage.sun.security.jca";
16d830c87e7b 8168851: Tighten permissions granted to the java.smartcardio module mullan parents: 41603 diff changeset	30	permission java.lang.RuntimePermission
16d830c87e7b 8168851: Tighten permissions granted to the java.smartcardio module mullan parents: 41603 diff changeset	31	"accessClassInPackage.sun.security.util";
16d830c87e7b 8168851: Tighten permissions granted to the java.smartcardio module mullan parents: 41603 diff changeset	32	permission java.util.PropertyPermission
16d830c87e7b 8168851: Tighten permissions granted to the java.smartcardio module mullan parents: 41603 diff changeset	33	"javax.smartcardio.TerminalFactory.DefaultType", "read";
16d830c87e7b 8168851: Tighten permissions granted to the java.smartcardio module mullan parents: 41603 diff changeset	34	permission java.util.PropertyPermission "os.name", "read";
16d830c87e7b 8168851: Tighten permissions granted to the java.smartcardio module mullan parents: 41603 diff changeset	35	permission java.util.PropertyPermission "os.arch", "read";
16d830c87e7b 8168851: Tighten permissions granted to the java.smartcardio module mullan parents: 41603 diff changeset	36	permission java.util.PropertyPermission "sun.arch.data.model", "read";
16d830c87e7b 8168851: Tighten permissions granted to the java.smartcardio module mullan parents: 41603 diff changeset	37	permission java.util.PropertyPermission
16d830c87e7b 8168851: Tighten permissions granted to the java.smartcardio module mullan parents: 41603 diff changeset	38	"sun.security.smartcardio.library", "read";
16d830c87e7b 8168851: Tighten permissions granted to the java.smartcardio module mullan parents: 41603 diff changeset	39	permission java.util.PropertyPermission
16d830c87e7b 8168851: Tighten permissions granted to the java.smartcardio module mullan parents: 41603 diff changeset	40	"sun.security.smartcardio.t0GetResponse", "read";
16d830c87e7b 8168851: Tighten permissions granted to the java.smartcardio module mullan parents: 41603 diff changeset	41	permission java.util.PropertyPermission
16d830c87e7b 8168851: Tighten permissions granted to the java.smartcardio module mullan parents: 41603 diff changeset	42	"sun.security.smartcardio.t1GetResponse", "read";
16d830c87e7b 8168851: Tighten permissions granted to the java.smartcardio module mullan parents: 41603 diff changeset	43	permission java.util.PropertyPermission
16d830c87e7b 8168851: Tighten permissions granted to the java.smartcardio module mullan parents: 41603 diff changeset	44	"sun.security.smartcardio.t1StripLe", "read";
39884 9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	45	// needed for looking up native PC/SC library
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	46	permission java.io.FilePermission "<<ALL FILES>>","read";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	47	permission java.security.SecurityPermission "putProviderProperty.SunPCSC";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	48	permission java.security.SecurityPermission
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	49	"clearProviderProperties.SunPCSC";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	50	permission java.security.SecurityPermission
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	51	"removeProviderProperty.SunPCSC";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	52	};
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	53
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	54	grant codeBase "jrt:/java.sql" {
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	55	permission java.security.AllPermission;
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	56	};
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	57
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	58	grant codeBase "jrt:/java.sql.rowset" {
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	59	permission java.security.AllPermission;
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	60	};
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	61
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	62
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	63	grant codeBase "jrt:/java.xml.crypto" {
43206 4c18d1166944 8140353: Improve signature checking mullan parents: 42693 diff changeset	64	permission java.lang.RuntimePermission
4c18d1166944 8140353: Improve signature checking mullan parents: 42693 diff changeset	65	"accessClassInPackage.sun.security.util";
39884 9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	66	permission java.util.PropertyPermission "*", "read";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	67	permission java.security.SecurityPermission "putProviderProperty.XMLDSig";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	68	permission java.security.SecurityPermission
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	69	"clearProviderProperties.XMLDSig";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	70	permission java.security.SecurityPermission
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	71	"removeProviderProperty.XMLDSig";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	72	permission java.security.SecurityPermission
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	73	"com.sun.org.apache.xml.internal.security.register";
40551 05eba5515cbb 8151893: Add security property to configure XML Signature secure validation mode mullan parents: 39885 diff changeset	74	permission java.security.SecurityPermission
05eba5515cbb 8151893: Add security property to configure XML Signature secure validation mode mullan parents: 39885 diff changeset	75	"getProperty.jdk.xml.dsig.secureValidationPolicy";
43221 eef9383d25cb 8055206: Update SecurityManager::checkPackageAccess to restrict non-exported JDK packages by default mullan parents: 43206 diff changeset	76	permission java.lang.RuntimePermission
eef9383d25cb 8055206: Update SecurityManager::checkPackageAccess to restrict non-exported JDK packages by default mullan parents: 43206 diff changeset	77	"accessClassInPackage.com.sun.org.apache.xml.internal.*";
eef9383d25cb 8055206: Update SecurityManager::checkPackageAccess to restrict non-exported JDK packages by default mullan parents: 43206 diff changeset	78	permission java.lang.RuntimePermission
eef9383d25cb 8055206: Update SecurityManager::checkPackageAccess to restrict non-exported JDK packages by default mullan parents: 43206 diff changeset	79	"accessClassInPackage.com.sun.org.apache.xpath.internal";
eef9383d25cb 8055206: Update SecurityManager::checkPackageAccess to restrict non-exported JDK packages by default mullan parents: 43206 diff changeset	80	permission java.lang.RuntimePermission
eef9383d25cb 8055206: Update SecurityManager::checkPackageAccess to restrict non-exported JDK packages by default mullan parents: 43206 diff changeset	81	"accessClassInPackage.com.sun.org.apache.xpath.internal.*";
39884 9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	82	};
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	83
45640 b35c4c2cada2 8182137: Missing permissions in deprivileged java.xml.bind and java.xml.ws modules mchung parents: 43996 diff changeset	84
b35c4c2cada2 8182137: Missing permissions in deprivileged java.xml.bind and java.xml.ws modules mchung parents: 43996 diff changeset	85	grant codeBase "jrt:/jdk.accessibility" {
b35c4c2cada2 8182137: Missing permissions in deprivileged java.xml.bind and java.xml.ws modules mchung parents: 43996 diff changeset	86	permission java.lang.RuntimePermission "accessClassInPackage.sun.awt";
39884 9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	87	};
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	88
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	89	grant codeBase "jrt:/jdk.charsets" {
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	90	permission java.util.PropertyPermission "os.name", "read";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	91	permission java.util.PropertyPermission "sun.nio.cs.map", "read";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	92	permission java.lang.RuntimePermission "charsetProvider";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	93	permission java.lang.RuntimePermission
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	94	"accessClassInPackage.jdk.internal.misc";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	95	permission java.lang.RuntimePermission "accessClassInPackage.sun.nio.cs";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	96	};
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	97
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	98	grant codeBase "jrt:/jdk.crypto.ec" {
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	99	permission java.lang.RuntimePermission
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	100	"accessClassInPackage.sun.security.*";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	101	permission java.lang.RuntimePermission "loadLibrary.sunec";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	102	permission java.security.SecurityPermission "putProviderProperty.SunEC";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	103	permission java.security.SecurityPermission "clearProviderProperties.SunEC";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	104	permission java.security.SecurityPermission "removeProviderProperty.SunEC";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	105	};
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	106
43248 5e15de85a1a0 8172527: Rename jdk.crypto.token to jdk.crypto.cryptoki ascarpino parents: 43245 diff changeset	107	grant codeBase "jrt:/jdk.crypto.cryptoki" {
39884 9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	108	permission java.lang.RuntimePermission
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	109	"accessClassInPackage.sun.security.*";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	110	permission java.lang.RuntimePermission "accessClassInPackage.sun.nio.ch";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	111	permission java.lang.RuntimePermission "loadLibrary.j2pkcs11";
41603 bb9d97b4c21b 8168313: Tighten permissions granted to jdk.crypto.pkcs11 module mullan parents: 41556 diff changeset	112	permission java.util.PropertyPermission "sun.security.pkcs11.allowSingleThreadedModules", "read";
bb9d97b4c21b 8168313: Tighten permissions granted to jdk.crypto.pkcs11 module mullan parents: 41556 diff changeset	113	permission java.util.PropertyPermission "os.name", "read";
bb9d97b4c21b 8168313: Tighten permissions granted to jdk.crypto.pkcs11 module mullan parents: 41556 diff changeset	114	permission java.util.PropertyPermission "os.arch", "read";
48580 d4898fde8171 8185292: Stricter key generation apetcher parents: 48130 diff changeset	115	permission java.util.PropertyPermission "jdk.crypto.KeyAgreement.legacyKDF", "read";
39884 9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	116	permission java.security.SecurityPermission "putProviderProperty.*";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	117	permission java.security.SecurityPermission "clearProviderProperties.*";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	118	permission java.security.SecurityPermission "removeProviderProperty.*";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	119	permission java.security.SecurityPermission
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	120	"getProperty.auth.login.defaultCallbackHandler";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	121	permission java.security.SecurityPermission "authProvider.*";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	122	// Needed for reading PKCS11 config file and NSS library check
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	123	permission java.io.FilePermission "<<ALL FILES>>", "read";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	124	};
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	125
45640 b35c4c2cada2 8182137: Missing permissions in deprivileged java.xml.bind and java.xml.ws modules mchung parents: 43996 diff changeset	126	grant codeBase "jrt:/jdk.desktop" {
b35c4c2cada2 8182137: Missing permissions in deprivileged java.xml.bind and java.xml.ws modules mchung parents: 43996 diff changeset	127	permission java.lang.RuntimePermission "accessClassInPackage.com.sun.awt";
b35c4c2cada2 8182137: Missing permissions in deprivileged java.xml.bind and java.xml.ws modules mchung parents: 43996 diff changeset	128	};
b35c4c2cada2 8182137: Missing permissions in deprivileged java.xml.bind and java.xml.ws modules mchung parents: 43996 diff changeset	129
39884 9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	130	grant codeBase "jrt:/jdk.dynalink" {
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	131	permission java.security.AllPermission;
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	132	};
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	133
47267 b3a91921bafc 8159526: Deprivilege jdk.httpserver vtewari parents: 47216 diff changeset	134	grant codeBase "jrt:/jdk.httpserver" {
b3a91921bafc 8159526: Deprivilege jdk.httpserver vtewari parents: 47216 diff changeset	135	permission java.security.AllPermission;
b3a91921bafc 8159526: Deprivilege jdk.httpserver vtewari parents: 47216 diff changeset	136	};
b3a91921bafc 8159526: Deprivilege jdk.httpserver vtewari parents: 47216 diff changeset	137
39884 9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	138	grant codeBase "jrt:/jdk.internal.le" {
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	139	permission java.security.AllPermission;
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	140	};
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	141
45640 b35c4c2cada2 8182137: Missing permissions in deprivileged java.xml.bind and java.xml.ws modules mchung parents: 43996 diff changeset	142	grant codeBase "jrt:/jdk.internal.vm.compiler" {
b35c4c2cada2 8182137: Missing permissions in deprivileged java.xml.bind and java.xml.ws modules mchung parents: 43996 diff changeset	143	permission java.security.AllPermission;
b35c4c2cada2 8182137: Missing permissions in deprivileged java.xml.bind and java.xml.ws modules mchung parents: 43996 diff changeset	144	};
b35c4c2cada2 8182137: Missing permissions in deprivileged java.xml.bind and java.xml.ws modules mchung parents: 43996 diff changeset	145
47595 bb0c5c1a2785 8188775: Module jdk.internal.vm.compiler.management has not been granted accessClassInPackage.org.graalvm.compiler.hotspot kvn parents: 47267 diff changeset	146	grant codeBase "jrt:/jdk.internal.vm.compiler.management" {
48130 998c88ae423a 8189116: Give the jdk.internal.vm.compiler.management only the permissions it really needs to expose the bean jtulach parents: 47595 diff changeset	147	permission java.lang.RuntimePermission "accessClassInPackage.org.graalvm.compiler.hotspot";
998c88ae423a 8189116: Give the jdk.internal.vm.compiler.management only the permissions it really needs to expose the bean jtulach parents: 47595 diff changeset	148	permission java.lang.RuntimePermission "accessClassInPackage.jdk.vm.ci.runtime";
998c88ae423a 8189116: Give the jdk.internal.vm.compiler.management only the permissions it really needs to expose the bean jtulach parents: 47595 diff changeset	149	permission java.lang.RuntimePermission "accessClassInPackage.sun.management.spi";
998c88ae423a 8189116: Give the jdk.internal.vm.compiler.management only the permissions it really needs to expose the bean jtulach parents: 47595 diff changeset	150	permission java.lang.RuntimePermission "sun.management.spi.PlatformMBeanProvider.subclass";
47595 bb0c5c1a2785 8188775: Module jdk.internal.vm.compiler.management has not been granted accessClassInPackage.org.graalvm.compiler.hotspot kvn parents: 47267 diff changeset	151	};
bb0c5c1a2785 8188775: Module jdk.internal.vm.compiler.management has not been granted accessClassInPackage.org.graalvm.compiler.hotspot kvn parents: 47267 diff changeset	152
39884 9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	153	grant codeBase "jrt:/jdk.jsobject" {
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	154	permission java.security.AllPermission;
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	155	};
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	156
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	157	grant codeBase "jrt:/jdk.localedata" {
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	158	permission java.lang.RuntimePermission "accessClassInPackage.sun.text.*";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	159	permission java.lang.RuntimePermission "accessClassInPackage.sun.util.*";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	160	};
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	161
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	162	grant codeBase "jrt:/jdk.naming.dns" {
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	163	permission java.security.AllPermission;
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	164	};
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	165
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	166	grant codeBase "jrt:/jdk.scripting.nashorn" {
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	167	permission java.security.AllPermission;
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	168	};
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	169
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	170	grant codeBase "jrt:/jdk.scripting.nashorn.shell" {
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	171	permission java.security.AllPermission;
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	172	};
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	173
39885 5b01da2e0368 8159528: Deprivilege java.security.jgss, jdk.security.jgss and jdk.security.auth weijun parents: 39884 diff changeset	174	grant codeBase "jrt:/jdk.security.auth" {
5b01da2e0368 8159528: Deprivilege java.security.jgss, jdk.security.jgss and jdk.security.auth weijun parents: 39884 diff changeset	175	permission java.security.AllPermission;
5b01da2e0368 8159528: Deprivilege java.security.jgss, jdk.security.jgss and jdk.security.auth weijun parents: 39884 diff changeset	176	};
5b01da2e0368 8159528: Deprivilege java.security.jgss, jdk.security.jgss and jdk.security.auth weijun parents: 39884 diff changeset	177
5b01da2e0368 8159528: Deprivilege java.security.jgss, jdk.security.jgss and jdk.security.auth weijun parents: 39884 diff changeset	178	grant codeBase "jrt:/jdk.security.jgss" {
5b01da2e0368 8159528: Deprivilege java.security.jgss, jdk.security.jgss and jdk.security.auth weijun parents: 39884 diff changeset	179	permission java.security.AllPermission;
5b01da2e0368 8159528: Deprivilege java.security.jgss, jdk.security.jgss and jdk.security.auth weijun parents: 39884 diff changeset	180	};
5b01da2e0368 8159528: Deprivilege java.security.jgss, jdk.security.jgss and jdk.security.auth weijun parents: 39884 diff changeset	181
39884 9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	182	grant codeBase "jrt:/jdk.zipfs" {
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	183	permission java.io.FilePermission "<<ALL FILES>>", "read,write,delete";
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	184	permission java.lang.RuntimePermission "fileSystemProvider";
41959 3b3918911a15 8168862: Tighten permissions granted to the jdk.zipfs module sherman parents: 41812 diff changeset	185	permission java.util.PropertyPermission "os.name", "read";
39884 9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	186	};
9a543219d0bb 8159752: Grant de-privileged module permissions by default with java.security.policy override option mullan parents: diff changeset	187
43245 bc7dea80c4d0 8173082: java/bean/* tests fail since change of JDK-8055206 mullan parents: 43221 diff changeset	188	// permissions needed by applications using java.desktop module
bc7dea80c4d0 8173082: java/bean/* tests fail since change of JDK-8055206 mullan parents: 43221 diff changeset	189	grant {
bc7dea80c4d0 8173082: java/bean/* tests fail since change of JDK-8055206 mullan parents: 43221 diff changeset	190	permission java.lang.RuntimePermission "accessClassInPackage.com.sun.beans";
bc7dea80c4d0 8173082: java/bean/* tests fail since change of JDK-8055206 mullan parents: 43221 diff changeset	191	permission java.lang.RuntimePermission "accessClassInPackage.com.sun.beans.*";
bc7dea80c4d0 8173082: java/bean/* tests fail since change of JDK-8055206 mullan parents: 43221 diff changeset	192	permission java.lang.RuntimePermission "accessClassInPackage.com.sun.java.swing.plaf.*";
bc7dea80c4d0 8173082: java/bean/* tests fail since change of JDK-8055206 mullan parents: 43221 diff changeset	193	permission java.lang.RuntimePermission "accessClassInPackage.com.apple.*";
bc7dea80c4d0 8173082: java/bean/* tests fail since change of JDK-8055206 mullan parents: 43221 diff changeset	194	};

author	lancea
	Sat, 10 Feb 2018 07:06:16 -0500
changeset 48841	0937e5f799df
parent 48580	d4898fde8171
child 49765	ee6f7a61f3a5
child 56255	39e28481492d
permissions	-rw-r--r--