--- /dev/null 2017-11-09 09:38:01.297999907 +0100 +++ new/test/jdk/jdk/jfr/event/runtime/exception.security.policy 2018-04-09 18:35:21.851658437 +0200 @@ -0,0 +1,20 @@ +grant { + // must allow file reads so that jtreg itself and JFR can run + permission java.io.FilePermission "<>", "read"; + // must allow file delete so that JFR can delete repository + permission java.io.FilePermission "<>", "delete"; + // must allow file write so that the test can create the recording + permission java.io.FilePermission "<>", "write"; + + // need to be able to create temporary files + permission java.util.PropertyPermission "java.io.tmpdir", "read"; + permission java.util.PropertyPermission "user.dir", "read"; + + // need ManagementPermission to control JFR from the test + permission java.lang.management.ManagementPermission "control"; + permission java.lang.management.ManagementPermission "monitor"; + + // JDK-8019403 - access to sun.security.util, which is needed for creation of temp files, + // is not permitted automatically on solaris + permission java.lang.RuntimePermission "accessClassInPackage.sun.security.util"; +};