[9] RFR 8154113: java.security.AccessControlException: access denied ("java.security.SecurityPermission" "authProvider.SunMSCAPI")
Sean Mullan
sean.mullan at oracle.com
Thu Aug 4 14:24:51 UTC 2016
Looks good.
--Sean
On 08/03/2016 07:15 PM, Valerie Peng wrote:
>
> Sure, webrev updated:
> http://cr.openjdk.java.net/~valeriep/8154113/webrev.01/
> Thanks,
> Valerie
>
> On 8/3/2016 6:09 AM, Sean Mullan wrote:
>> Hi Valerie,
>>
>> Can you also clean up the noaccess.policy and access.policy files and
>> remove the permissions that are now granted to the jdk.crypto.mscapi
>> module in default.policy?
>>
>> Also, in the test, I would use the java.security.policy== option
>> instead of the policy option. The policy option is an older jtreg
>> option that I think we should phase out from tests. The
>> java.security.policy option is easier to understand because it is
>> consistent with the system property.
>>
>> --Sean
>>
>> On 08/02/2016 06:04 PM, Valerie Peng wrote:
>>> Sean,
>>>
>>> Would you be able to review this policy update for SunMSCAPI provider?
>>> In addition to the policy update, the test is updated to replace the
>>> shell script with @run tags.
>>>
>>> Bug: https://bugs.openjdk.java.net/browse/JDK-8154113
>>> Webrev: http://cr.openjdk.java.net/~valeriep/8154113/webrev.00/
>>>
>>> Thanks,
>>> Valerie
>
More information about the security-dev
mailing list