New src/jdk.jdi/share/classes/com/sun/jdi/JDIPermission.java

   1 /*
   2  * Copyright (c) 2004, 2017, Oracle and/or its affiliates. All rights reserved.
   3  * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
   4  *
   5  * This code is free software; you can redistribute it and/or modify it
   6  * under the terms of the GNU General Public License version 2 only, as
   7  * published by the Free Software Foundation.  Oracle designates this
   8  * particular file as subject to the "Classpath" exception as provided
   9  * by Oracle in the LICENSE file that accompanied this code.
  10  *
  11  * This code is distributed in the hope that it will be useful, but WITHOUT
  12  * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
  13  * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
  14  * version 2 for more details (a copy is included in the LICENSE file that
  15  * accompanied this code).
  16  *
  17  * You should have received a copy of the GNU General Public License version
  18  * 2 along with this work; if not, write to the Free Software Foundation,
  19  * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
  20  *
  21  * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
  22  * or visit www.oracle.com if you need additional information or have any
  23  * questions.
  24  */
  25 
  26 package com.sun.jdi;
  27 
  28 /**
  29  * The {@code JDIPermission} class represents access rights to
  30  * the {@code VirtualMachineManager}.  This is the permission
  31  * which the SecurityManager will check when code that is running with
  32  * a SecurityManager requests access to the VirtualMachineManager, as
  33  * defined in the Java Debug Interface (JDI) for the Java platform.
  34  * <P>
  35  * A {@code JDIPermission} object contains a name (also referred
  36  * to as a "target name") but no actions list; you either have the
  37  * named permission or you don't.
  38  * <P>
  39  * The following table provides a summary description of what the
  40  * permission allows, and discusses the risks of granting code the
  41  * permission.
  42  *
  43  * <table class="plain">
  44  * <caption style="display:none">Table shows permission target name, what the
  45  * permission allows, and associated risks</caption>
  46  * <tr>
  47  * <th>Permission Target Name</th>
  48  * <th>What the Permission Allows</th>
  49  * <th>Risks of Allowing this Permission</th>
  50  * </tr>
  51  *
  52  * <tr>
  53  *   <td>virtualMachineManager</td>
  54  *   <td>Ability to inspect and modify the JDI objects in the
  55  *   {@code VirtualMachineManager}
  56  *   </td>
  57  *   <td>This allows an attacker to control the
  58  *   {@code VirtualMachineManager} and cause the system to
  59  *   misbehave.
  60  *   </td>
  61  * </tr>
  62  *
  63  * </table>
  64  *
  65  * <p>
  66  * Programmers do not normally create JDIPermission objects directly.
  67  * Instead they are created by the security policy code based on reading
  68  * the security policy file.
  69  *
  70  * @author  Tim Bell
  71  * @since   1.5
  72  *
  73  * @see com.sun.jdi.Bootstrap
  74  * @see java.security.BasicPermission
  75  * @see java.security.Permission
  76  * @see java.security.Permissions
  77  * @see java.security.PermissionCollection
  78  * @see java.lang.SecurityManager
  79  *
  80  */
  81 
  82 public final class JDIPermission extends java.security.BasicPermission {
  83 
  84     private static final long serialVersionUID = -6988461416938786271L;
  85 
  86     /**
  87      * The {@code JDIPermission} class represents access rights to the
  88      * {@code VirtualMachineManager}
  89      * @param name Permission name. Must be "virtualMachineManager".
  90      * @throws IllegalArgumentException if the name argument is invalid.
  91      */
  92     public JDIPermission(String name) {
  93         super(name);
  94         if (!name.equals("virtualMachineManager")) {
  95             throw new IllegalArgumentException("name: " + name);
  96         }
  97     }
  98 
  99     /**
 100      * Constructs a new JDIPermission object.
 101      *
 102      * @param name Permission name. Must be "virtualMachineManager".
 103      * @param actions Must be either null or the empty string.
 104      * @throws IllegalArgumentException if arguments are invalid.
 105      */
 106     public JDIPermission(String name, String actions)
 107         throws IllegalArgumentException {
 108         super(name);
 109         if (!name.equals("virtualMachineManager")) {
 110             throw new IllegalArgumentException("name: " + name);
 111         }
 112         if (actions != null && actions.length() > 0) {
 113             throw new IllegalArgumentException("actions: " + actions);
 114         }
 115     }
 116 }