Old src/java.base/share/lib/security/default.policy

   1 //
   2 // Permissions required by modules stored in a run-time image and loaded
   3 // by the platform class loader.
   4 //
   5 // NOTE that this file is not intended to be modified. If additional
   6 // permissions need to be granted to the modules in this file, it is
   7 // recommended that they be configured in a separate policy file or
   8 // ${java.home}/conf/security/java.policy.
   9 //
  10 
  11 grant codeBase "jrt:/java.activation" {
  12     permission java.security.AllPermission;
  13 };
  14 
  15 grant codeBase "jrt:/java.compiler" {
  16     permission java.security.AllPermission;
  17 };
  18 
  19 grant codeBase "jrt:/java.corba" {
  20     permission java.security.AllPermission;
  21 };
  22 
  23 grant codeBase "jrt:/java.scripting" {
  24     permission java.security.AllPermission;
  25 };
  26 
  27 grant codeBase "jrt:/java.security.jgss" {
  28     permission java.security.AllPermission;
  29 };
  30 
  31 grant codeBase "jrt:/java.smartcardio" {
  32     permission javax.smartcardio.CardPermission "*", "*";
  33     permission java.lang.RuntimePermission "loadLibrary.j2pcsc";
  34     permission java.lang.RuntimePermission
  35                    "accessClassInPackage.sun.security.*";
  36     permission java.util.PropertyPermission "*", "read";
  37     // needed for looking up native PC/SC library
  38     permission java.io.FilePermission "<<ALL FILES>>","read";
  39     permission java.security.SecurityPermission "putProviderProperty.SunPCSC";
  40     permission java.security.SecurityPermission
  41                    "clearProviderProperties.SunPCSC";
  42     permission java.security.SecurityPermission
  43                    "removeProviderProperty.SunPCSC";
  44 };
  45 
  46 grant codeBase "jrt:/java.sql" {
  47     permission java.security.AllPermission;
  48 };
  49 
  50 grant codeBase "jrt:/java.sql.rowset" {
  51     permission java.security.AllPermission;
  52 };
  53 
  54 grant codeBase "jrt:/java.xml.bind" {
  55     permission java.lang.RuntimePermission
  56                    "accessClassInPackage.com.sun.xml.internal.*";
  57     permission java.lang.RuntimePermission
  58                    "accessClassInPackage.com.sun.istack.internal";
  59     permission java.lang.RuntimePermission
  60                    "accessClassInPackage.com.sun.istack.internal.*";
  61     permission java.lang.RuntimePermission "accessDeclaredMembers";
  62     permission java.lang.reflect.ReflectPermission "suppressAccessChecks";
  63     permission java.util.PropertyPermission "*", "read";
  64 };
  65 
  66 grant codeBase "jrt:/java.xml.crypto" {
  67     permission java.util.PropertyPermission "*", "read";
  68     permission java.security.SecurityPermission "putProviderProperty.XMLDSig";
  69     permission java.security.SecurityPermission
  70                    "clearProviderProperties.XMLDSig";
  71     permission java.security.SecurityPermission
  72                    "removeProviderProperty.XMLDSig";
  73     permission java.security.SecurityPermission
  74                    "com.sun.org.apache.xml.internal.security.register";
  75     permission java.security.SecurityPermission
  76                    "getProperty.jdk.xml.dsig.secureValidationPolicy";
  77 };
  78 
  79 grant codeBase "jrt:/java.xml.ws" {
  80     permission java.lang.RuntimePermission
  81                    "accessClassInPackage.com.sun.xml.internal.*";
  82     permission java.lang.RuntimePermission
  83                    "accessClassInPackage.com.sun.istack.internal";
  84     permission java.lang.RuntimePermission
  85                    "accessClassInPackage.com.sun.istack.internal.*";
  86     permission java.lang.RuntimePermission
  87                    "accessClassInPackage.com.sun.org.apache.xerces.internal.*";
  88     permission java.lang.RuntimePermission "accessDeclaredMembers";
  89     permission java.lang.reflect.ReflectPermission "suppressAccessChecks";
  90     permission java.util.PropertyPermission "*", "read";
  91 };
  92 
  93 grant codeBase "jrt:/jdk.charsets" {
  94     permission java.io.FilePermission "${java.home}/-", "read";
  95     permission java.util.PropertyPermission "os.name", "read";
  96     permission java.util.PropertyPermission "sun.nio.cs.map", "read";
  97     permission java.lang.RuntimePermission "charsetProvider";
  98     permission java.lang.RuntimePermission
  99                    "accessClassInPackage.jdk.internal.misc";
 100     permission java.lang.RuntimePermission "accessClassInPackage.sun.nio.cs";
 101 };
 102 
 103 grant codeBase "jrt:/jdk.crypto.ec" {
 104     permission java.lang.RuntimePermission
 105                    "accessClassInPackage.sun.security.*";
 106     permission java.lang.RuntimePermission "loadLibrary.sunec";
 107     permission java.util.PropertyPermission "*", "read";
 108     permission java.security.SecurityPermission "putProviderProperty.SunEC";
 109     permission java.security.SecurityPermission "clearProviderProperties.SunEC";
 110     permission java.security.SecurityPermission "removeProviderProperty.SunEC";
 111 };
 112 
 113 grant codeBase "jrt:/jdk.crypto.pkcs11" {
 114     permission java.lang.RuntimePermission
 115                    "accessClassInPackage.sun.security.*";
 116     permission java.lang.RuntimePermission "accessClassInPackage.sun.misc";
 117     permission java.lang.RuntimePermission "accessClassInPackage.sun.nio.ch";
 118     permission java.lang.RuntimePermission "loadLibrary.j2pkcs11";
 119     // needs "security.pkcs11.allowSingleThreadedModules"
 120     permission java.util.PropertyPermission "*", "read";
 121     permission java.security.SecurityPermission "putProviderProperty.*";
 122     permission java.security.SecurityPermission "clearProviderProperties.*";
 123     permission java.security.SecurityPermission "removeProviderProperty.*";
 124     permission java.security.SecurityPermission
 125                    "getProperty.auth.login.defaultCallbackHandler";
 126     permission java.security.SecurityPermission "authProvider.*";
 127     // Needed for reading PKCS11 config file and NSS library check
 128     permission java.io.FilePermission "<<ALL FILES>>", "read";
 129 };
 130 
 131 grant codeBase "jrt:/jdk.dynalink" {
 132     permission java.security.AllPermission;
 133 };
 134 
 135 grant codeBase "jrt:/jdk.internal.le" {
 136     permission java.security.AllPermission;
 137 };
 138 
 139 grant codeBase "jrt:/jdk.jsobject" {
 140     permission java.security.AllPermission;
 141 };
 142 
 143 grant codeBase "jrt:/jdk.localedata" {
 144     permission java.lang.RuntimePermission "accessClassInPackage.sun.text.*";
 145     permission java.lang.RuntimePermission "accessClassInPackage.sun.util.*";
 146     permission java.util.PropertyPermission "*", "read";
 147 };
 148 
 149 grant codeBase "jrt:/jdk.naming.dns" {
 150     permission java.security.AllPermission;
 151 };
 152 
 153 grant codeBase "jrt:/jdk.scripting.nashorn" {
 154     permission java.security.AllPermission;
 155 };
 156 
 157 grant codeBase "jrt:/jdk.scripting.nashorn.shell" {
 158     permission java.security.AllPermission;
 159 };
 160 
 161 grant codeBase "jrt:/jdk.security.auth" {
 162     permission java.security.AllPermission;
 163 };
 164 
 165 grant codeBase "jrt:/jdk.security.jgss" {
 166     permission java.security.AllPermission;
 167 };
 168 
 169 grant codeBase "jrt:/jdk.zipfs" {
 170     permission java.io.FilePermission "<<ALL FILES>>", "read,write,delete";
 171     permission java.lang.RuntimePermission "fileSystemProvider";
 172     permission java.util.PropertyPermission "*", "read";
 173 };
 174