1 /* 2 * Copyright (c) 1998, 2006, Oracle and/or its affiliates. All rights reserved. 3 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. 4 * 5 * This code is free software; you can redistribute it and/or modify it 6 * under the terms of the GNU General Public License version 2 only, as 7 * published by the Free Software Foundation. Oracle designates this 8 * particular file as subject to the "Classpath" exception as provided 9 * by Oracle in the LICENSE file that accompanied this code. 10 * 11 * This code is distributed in the hope that it will be useful, but WITHOUT 12 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or 13 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License 14 * version 2 for more details (a copy is included in the LICENSE file that 15 * accompanied this code). 16 * 17 * You should have received a copy of the GNU General Public License version 18 * 2 along with this work; if not, write to the Free Software Foundation, 19 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. 20 * 21 * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA 22 * or visit www.oracle.com if you need additional information or have any 23 * questions. 24 */ 25 26 package java.security; 27 28 import java.security.*; 29 import java.util.Enumeration; 30 import java.util.Hashtable; 31 import java.util.StringTokenizer; 32 import sun.security.util.SecurityConstants; 33 34 /** 35 * The AllPermission is a permission that implies all other permissions. 36 * <p> 37 * <b>Note:</b> Granting AllPermission should be done with extreme care, 38 * as it implies all other permissions. Thus, it grants code the ability 39 * to run with security 40 * disabled. Extreme caution should be taken before granting such 41 * a permission to code. This permission should be used only during testing, 42 * or in extremely rare cases where an application or applet is 43 * completely trusted and adding the necessary permissions to the policy 44 * is prohibitively cumbersome. 45 * 46 * @see java.security.Permission 47 * @see java.security.AccessController 48 * @see java.security.Permissions 49 * @see java.security.PermissionCollection 50 * @see java.lang.SecurityManager 51 * 52 * 53 * @author Roland Schemers 54 * 55 * @serial exclude 56 */ 57 58 public final class AllPermission extends Permission { 59 60 private static final long serialVersionUID = -2916474571451318075L; 61 62 /** 63 * Creates a new AllPermission object. 64 */ 65 66 public AllPermission() 67 { 68 super("<all permissions>"); 69 } 70 71 72 /** 73 * Creates a new AllPermission object. This 74 * constructor exists for use by the <code>Policy</code> object 75 * to instantiate new Permission objects. 76 * 77 * @param name ignored 78 * @param actions ignored. 79 */ 80 public AllPermission(String name, String actions) 81 { 82 this(); 83 } 84 85 /** 86 * Checks if the specified permission is "implied" by 87 * this object. This method always returns true. 88 * 89 * @param p the permission to check against. 90 * 91 * @return return 92 */ 93 public boolean implies(Permission p) { 94 return true; 95 } 96 97 /** 98 * Checks two AllPermission objects for equality. Two AllPermission 99 * objects are always equal. 100 * 101 * @param obj the object we are testing for equality with this object. 102 * @return true if <i>obj</i> is an AllPermission, false otherwise. 103 */ 104 public boolean equals(Object obj) { 105 return (obj instanceof AllPermission); 106 } 107 108 /** 109 * Returns the hash code value for this object. 110 * 111 * @return a hash code value for this object. 112 */ 113 114 public int hashCode() { 115 return 1; 116 } 117 118 /** 119 * Returns the canonical string representation of the actions. 120 * 121 * @return the actions. 122 */ 123 public String getActions() 124 { 125 return "<all actions>"; 126 } 127 128 /** 129 * Returns a new PermissionCollection object for storing AllPermission 130 * objects. 131 * <p> 132 * 133 * @return a new PermissionCollection object suitable for 134 * storing AllPermissions. 135 */ 136 137 public PermissionCollection newPermissionCollection() { 138 return new AllPermissionCollection(); 139 } 140 141 } 142 143 /** 144 * A AllPermissionCollection stores a collection 145 * of AllPermission permissions. AllPermission objects 146 * must be stored in a manner that allows them to be inserted in any 147 * order, but enable the implies function to evaluate the implies 148 * method in an efficient (and consistent) manner. 149 * 150 * @see java.security.Permission 151 * @see java.security.Permissions 152 * 153 * 154 * @author Roland Schemers 155 * 156 * @serial include 157 */ 158 159 final class AllPermissionCollection 160 extends PermissionCollection 161 implements java.io.Serializable 162 { 163 164 // use serialVersionUID from JDK 1.2.2 for interoperability 165 private static final long serialVersionUID = -4023755556366636806L; 166 167 private boolean all_allowed; // true if any all permissions have been added 168 169 /** 170 * Create an empty AllPermissions object. 171 * 172 */ 173 174 public AllPermissionCollection() { 175 all_allowed = false; 176 } 177 178 /** 179 * Adds a permission to the AllPermissions. The key for the hash is 180 * permission.path. 181 * 182 * @param permission the Permission object to add. 183 * 184 * @exception IllegalArgumentException - if the permission is not a 185 * AllPermission 186 * 187 * @exception SecurityException - if this AllPermissionCollection object 188 * has been marked readonly 189 */ 190 191 public void add(Permission permission) 192 { 193 if (! (permission instanceof AllPermission)) 194 throw new IllegalArgumentException("invalid permission: "+ 195 permission); 196 if (isReadOnly()) 197 throw new SecurityException("attempt to add a Permission to a readonly PermissionCollection"); 198 199 all_allowed = true; // No sync; staleness OK 200 } 201 202 /** 203 * Check and see if this set of permissions implies the permissions 204 * expressed in "permission". 205 * 206 * @param p the Permission object to compare 207 * 208 * @return always returns true. 209 */ 210 211 public boolean implies(Permission permission) 212 { 213 return all_allowed; // No sync; staleness OK 214 } 215 216 /** 217 * Returns an enumeration of all the AllPermission objects in the 218 * container. 219 * 220 * @return an enumeration of all the AllPermission objects. 221 */ 222 public Enumeration<Permission> elements() 223 { 224 return new Enumeration<Permission>() { 225 private boolean hasMore = all_allowed; 226 227 public boolean hasMoreElements() { 228 return hasMore; 229 } 230 231 public Permission nextElement() { 232 hasMore = false; 233 return SecurityConstants.ALL_PERMISSION; 234 } 235 }; 236 } 237 }