RFR: 8283092: JMX subclass permission check redundant with strong encapsulation
Sean Mullan
mullan at openjdk.java.net
Thu Mar 17 14:13:30 UTC 2022
On Tue, 15 Mar 2022 20:22:16 GMT, Kevin Walls <kevinw at openjdk.org> wrote:
> Removing permission checks which, in the presence of a Security Manager, would check for a RuntimePermission "className.subclass". This was to prevent subclassing these classes, but is no longer necessary with strong encapsulation from modules.
I think you also need to update this test such that it checks that the module access restrictions prevent subclassing instead of the permission check: test/jdk/sun/management/PlatformMBeanProviderConstructorCheck.java
Also, it looks like this permission was never publicly documented and was only used internally, so it probably doesn't need a CSR, but I don't know for sure.
-------------
PR: https://git.openjdk.java.net/jdk/pull/7827
More information about the security-dev
mailing list