Bug ID: JDK-8040059 Change default policy for extensions to no permission

JDK-8040059 : Change default policy for extensions to no permission

Type: Enhancement
Component: security-libs

Priority: P3
Status: Resolved
Resolution: Fixed

Submitted: 2014-04-13
Updated: 2017-05-17
Resolved: 2014-05-09

Versions (Unresolved/Resolved/Fixed)

The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.

JDK 9
9 b14Fixed

Related Reports

Relates :	JDK-8043277 - Update jdk regression tests to extend the default security policy instead of override
Relates :	CODETOOLS-7900898 - Provide jtreg policy option that doesn't override system policy
Relates :	JDK-8043406 - Change default policy for JCE providers to run with as few privileges as possible
Relates :	JDK-8159752 - Grant de-privileged module permissions by default with java.security.policy override option
Relates :	JDK-8042868 - Add lib/ext/jfxrt.jar to java.policy file
Relates :	JDK-4287267 - Subdivide the "system security domain".
Relates :	JDK-8043419 - Test lib/security/java.policy/Ext_AllPolicy.sh fails against JDK 9 compiler upgrade build
Relates :	JDK-4215035 - standard extensions path is hard-coded in default system policy file
Relates :	JDK-8075706 - Policy implementation does not allow policy.provider to be on the class path

Description

This RFE proposes to remove granting all permissions for extensions (principle of least privilege).  Also in JDK 9, we want to separate the privileges of as many system classes as possible.

Permissions for each JAR file shipped in the JDK's extension directory will be explicitly granted with all permission initially.  This will allow each component team to identify minimum permissions required by each component and update the java.policy file accordingly.   New tests will possibly be developed in this privilege separation effort.

The default policy for extensions is configured in the java.policy and it's granted with all permissions by default as specified in: http://docs.oracle.com/javase/8/docs/technotes/guides/extensions/spec.html.  Customers installing libraries on extensions that require all permissions will need to update the java.policy for JDK 9 to explicitly specify that.

Comments

I filed https://javafx-jira.kenai.com/browse/RT-36848 to track adding an entry for jfxrt.jar in the java.policy file so JavaFX application will continue to run with a security manager.

25-04-2014