RFR: 8283092: JMX subclass permission check redundant with strong encapsulation

Sean Mullan mullan at openjdk.java.net
Thu Mar 17 14:13:30 UTC 2022


On Tue, 15 Mar 2022 20:22:16 GMT, Kevin Walls <kevinw at openjdk.org> wrote:

> Removing permission checks which, in the presence of a Security Manager, would check for a RuntimePermission "className.subclass".  This was to prevent subclassing these classes, but is no longer necessary with strong encapsulation from modules.

I think you also need to update this test such that it checks that the module access restrictions prevent subclassing instead of the permission check: test/jdk/sun/management/PlatformMBeanProviderConstructorCheck.java

Also, it looks like this permission was never publicly documented and was only used internally, so it probably doesn't need a CSR, but I don't know for sure.

-------------

PR: https://git.openjdk.java.net/jdk/pull/7827



More information about the security-dev mailing list