Old src/java.base/share/lib/security/default.policy

   1 //
   2 // Permissions required by modules stored in a run-time image and loaded
   3 // by the platform class loader.
   4 //
   5 // NOTE that this file is not intended to be modified. If additional
   6 // permissions need to be granted to the modules in this file, it is
   7 // recommended that they be configured in a separate policy file or
   8 // ${java.home}/conf/security/java.policy.
   9 //
  10 
  11 grant codeBase "jrt:/java.activation" {
  12     permission java.security.AllPermission;
  13 };
  14 
  15 grant codeBase "jrt:/java.compiler" {
  16     permission java.security.AllPermission;
  17 };
  18 
  19 grant codeBase "jrt:/java.corba" {
  20     permission java.security.AllPermission;
  21 };
  22 
  23 grant codeBase "jrt:/java.scripting" {
  24     permission java.security.AllPermission;
  25 };
  26 
  27 grant codeBase "jrt:/java.security.jgss" {
  28     permission java.security.AllPermission;
  29 };
  30 
  31 grant codeBase "jrt:/java.smartcardio" {
  32     permission javax.smartcardio.CardPermission "*", "*";
  33     permission java.lang.RuntimePermission "loadLibrary.j2pcsc";
  34     permission java.lang.RuntimePermission
  35                    "accessClassInPackage.sun.security.*";
  36     permission java.util.PropertyPermission "*", "read";
  37     // needed for looking up native PC/SC library
  38     permission java.io.FilePermission "<<ALL FILES>>","read";
  39     permission java.security.SecurityPermission "putProviderProperty.SunPCSC";
  40     permission java.security.SecurityPermission
  41                    "clearProviderProperties.SunPCSC";
  42     permission java.security.SecurityPermission
  43                    "removeProviderProperty.SunPCSC";
  44 };
  45 
  46 grant codeBase "jrt:/java.sql" {
  47     permission java.security.AllPermission;
  48 };
  49 
  50 grant codeBase "jrt:/java.sql.rowset" {
  51     permission java.security.AllPermission;
  52 };
  53 
  54 grant codeBase "jrt:/java.xml.bind" {
  55     permission java.lang.RuntimePermission
  56                    "accessClassInPackage.com.sun.xml.internal.*";
  57     permission java.lang.RuntimePermission
  58                    "accessClassInPackage.com.sun.istack.internal";
  59     permission java.lang.RuntimePermission
  60                    "accessClassInPackage.com.sun.istack.internal.*";
  61     permission java.lang.RuntimePermission "accessDeclaredMembers";
  62     permission java.lang.reflect.ReflectPermission "suppressAccessChecks";
  63     permission java.util.PropertyPermission "*", "read";
  64 };
  65 
  66 grant codeBase "jrt:/java.xml.crypto" {
  67     permission java.util.PropertyPermission "*", "read";
  68     permission java.security.SecurityPermission "putProviderProperty.XMLDSig";
  69     permission java.security.SecurityPermission
  70                    "clearProviderProperties.XMLDSig";
  71     permission java.security.SecurityPermission
  72                    "removeProviderProperty.XMLDSig";
  73     permission java.security.SecurityPermission
  74                    "com.sun.org.apache.xml.internal.security.register";
  75     permission java.security.SecurityPermission
  76                    "getProperty.jdk.xml.dsig.secureValidationPolicy";
  77 };
  78 
  79 grant codeBase "jrt:/java.xml.ws" {
  80     permission java.lang.RuntimePermission
  81                    "accessClassInPackage.com.sun.xml.internal.*";
  82     permission java.lang.RuntimePermission
  83                    "accessClassInPackage.com.sun.istack.internal";
  84     permission java.lang.RuntimePermission
  85                    "accessClassInPackage.com.sun.istack.internal.*";
  86     permission java.lang.RuntimePermission
  87                    "accessClassInPackage.com.sun.org.apache.xerces.internal.*";
  88     permission java.lang.RuntimePermission "accessDeclaredMembers";
  89     permission java.lang.reflect.ReflectPermission "suppressAccessChecks";
  90     permission java.util.PropertyPermission "*", "read";
  91 };
  92 
  93 grant codeBase "jrt:/jdk.charsets" {
  94     permission java.util.PropertyPermission "os.name", "read";
  95     permission java.util.PropertyPermission "sun.nio.cs.map", "read";
  96     permission java.lang.RuntimePermission "charsetProvider";
  97     permission java.lang.RuntimePermission
  98                    "accessClassInPackage.jdk.internal.misc";
  99     permission java.lang.RuntimePermission "accessClassInPackage.sun.nio.cs";
 100 };
 101 
 102 grant codeBase "jrt:/jdk.crypto.ec" {
 103     permission java.lang.RuntimePermission
 104                    "accessClassInPackage.sun.security.*";
 105     permission java.lang.RuntimePermission "loadLibrary.sunec";
 106     permission java.security.SecurityPermission "putProviderProperty.SunEC";
 107     permission java.security.SecurityPermission "clearProviderProperties.SunEC";
 108     permission java.security.SecurityPermission "removeProviderProperty.SunEC";
 109 };
 110 
 111 grant codeBase "jrt:/jdk.crypto.pkcs11" {
 112     permission java.lang.RuntimePermission
 113                    "accessClassInPackage.sun.security.*";
 114     permission java.lang.RuntimePermission "accessClassInPackage.sun.misc";
 115     permission java.lang.RuntimePermission "accessClassInPackage.sun.nio.ch";
 116     permission java.lang.RuntimePermission "loadLibrary.j2pkcs11";
 117     // needs "security.pkcs11.allowSingleThreadedModules"
 118     permission java.util.PropertyPermission "*", "read";
 119     permission java.security.SecurityPermission "putProviderProperty.*";
 120     permission java.security.SecurityPermission "clearProviderProperties.*";
 121     permission java.security.SecurityPermission "removeProviderProperty.*";
 122     permission java.security.SecurityPermission
 123                    "getProperty.auth.login.defaultCallbackHandler";
 124     permission java.security.SecurityPermission "authProvider.*";
 125     // Needed for reading PKCS11 config file and NSS library check
 126     permission java.io.FilePermission "<<ALL FILES>>", "read";
 127 };
 128 
 129 grant codeBase "jrt:/jdk.dynalink" {
 130     permission java.security.AllPermission;
 131 };
 132 
 133 grant codeBase "jrt:/jdk.internal.le" {
 134     permission java.security.AllPermission;
 135 };
 136 
 137 grant codeBase "jrt:/jdk.jsobject" {
 138     permission java.security.AllPermission;
 139 };
 140 
 141 grant codeBase "jrt:/jdk.localedata" {
 142     permission java.lang.RuntimePermission "accessClassInPackage.sun.text.*";
 143     permission java.lang.RuntimePermission "accessClassInPackage.sun.util.*";
 144     permission java.util.PropertyPermission "*", "read";
 145 };
 146 
 147 grant codeBase "jrt:/jdk.naming.dns" {
 148     permission java.security.AllPermission;
 149 };
 150 
 151 grant codeBase "jrt:/jdk.scripting.nashorn" {
 152     permission java.security.AllPermission;
 153 };
 154 
 155 grant codeBase "jrt:/jdk.scripting.nashorn.shell" {
 156     permission java.security.AllPermission;
 157 };
 158 
 159 grant codeBase "jrt:/jdk.security.auth" {
 160     permission java.security.AllPermission;
 161 };
 162 
 163 grant codeBase "jrt:/jdk.security.jgss" {
 164     permission java.security.AllPermission;
 165 };
 166 
 167 grant codeBase "jrt:/jdk.zipfs" {
 168     permission java.io.FilePermission "<<ALL FILES>>", "read,write,delete";
 169     permission java.lang.RuntimePermission "fileSystemProvider";
 170     permission java.util.PropertyPermission "*", "read";
 171 };
 172