1
// JBoss, Home of Professional Open Source
2
// Copyright 2005, JBoss Inc., and individual contributors as indicated
3
// by the @authors tag. See the copyright.txt in the distribution for a
4
// full listing of individual contributors.
6
// This is free software; you can redistribute it and/or modify it
7
// under the terms of the GNU Lesser General Public License as
8
// published by the Free Software Foundation; either version 2.1 of
9
// the License, or (at your option) any later version.
11
// This software is distributed in the hope that it will be useful,
12
// but WITHOUT ANY WARRANTY; without even the implied warranty of
13
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14
// Lesser General Public License for more details.
16
// You should have received a copy of the GNU Lesser General Public
17
// License along with this software; if not, write to the Free
18
// Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
19
// 02110-1301 USA, or see the FSF site: http://www.fsf.org.
22
//****************************************************************************************************************************************************************
23
//****************************************************************************************************************************************************************
24
//******************************************************************
25
//**** Permissions needed by Remoting to run the test suite ****
26
//******************************************************************
27
//******************************************************************
29
grant codeBase "file:${build.home}/output/lib/jboss-remoting.jar"
31
// Permission to read test keystores
32
permission java.io.FilePermission "${build.home}${/}output${/}tests${/}classes${/}-", "read";
34
// Permission for org.jboss.remoting.callback.CallbackStore
35
permission java.io.FilePermission "${build.home}${/}output${/}tests${/}classes${/}-", "read, write, delete";
37
// Permission for org.jboss.remoting.ConnectionNotifier
38
permission javax.management.MBeanPermission "org.jboss.test.remoting.lease.InjectedConnectionListenerTestCase$TestConnectionListener#handleConnectionException[jboss:type=connectionlistener]", "invoke";
40
// org.jboss.test.remoting.detection.metadata.MetadataTestCase
41
permission javax.management.MBeanPermission "org.jboss.test.remoting.detection.metadata.MetadataTestCase$TestNetworkRegistry#-[remoting:type=NetworkRegistry]", "isInstanceOf";
43
// org.jboss.test.remoting.handler.mbean.ServerTest
44
permission javax.management.MBeanPermission "org.jboss.test.remoting.handler.mbean.MBeanHandler#Invoker[test:type=handler]", "setAttribute";
45
permission javax.management.MBeanPermission "org.jboss.test.remoting.handler.mbean.MBeanHandler#MBeanServer[test:type=handler]", "setAttribute";
46
permission javax.management.MBeanPermission "org.jboss.test.remoting.handler.mbean.MBeanHandler#*[test:type=handler]", "invoke";
48
// org.jboss.test.remoting.security.CallbackErrorHandlerProxyTestCase
49
permission javax.management.MBeanPermission "org.jboss.test.remoting.security.TestCallbackErrorHandler#*[test:type=TestCallbackErrorHandler]", "setAttribute, invoke";
51
// org.jboss.test.remoting.security.CallbackStoreProxyTestCase
52
permission javax.management.MBeanPermission "org.jboss.test.remoting.security.TestCallbackStore#*[test:type=Callbackstore]", "setAttribute, invoke";
54
// org.jboss.test.remoting.security.NetworkRegistryProxyTestCase
55
permission javax.management.MBeanPermission "org.jboss.test.remoting.security.TestNetworkRegistry#addServer[test:type=TestNetworkRegistry]", "invoke";
57
// org.jboss.test.remoting.security.ServerInvokerHandlerProxyTestCase
58
permission javax.management.MBeanPermission "org.jboss.test.remoting.security.TestServerInvocationHandler#*[test:type=TestServerInvocationHandler]", "setAttribute, invoke";
60
// org.jboss.test.remoting.security.ServerSocketFactoryProxyTestCase
61
permission javax.management.MBeanPermission "org.jboss.test.remoting.security.TestServerSocketFactory#createServerSocket[test:type=SSLServerSocketFactoryService]", "invoke";
63
// org.jboss.test.remoting.transport.bisocket.ssl.builder.SSLBisocketInvokerTestCase
64
// org.jboss.test.remoting.transport.http.ssl.basic.HTTPSInvokerTestCase
65
// org.jboss.test.remoting.transport.http.ssl.builder.HTTPSInvokerTestCase
66
// org.jboss.test.remoting.transport.http.ssl.custom.HTTPSInvokerTestCase
67
// org.jboss.test.remoting.transport.rmi.ssl.builder.RMIInvokerTestCase
68
permission javax.management.MBeanPermission "org.jboss.remoting.security.SSLServerSocketFactoryService#createServerSocket[test:type=serversocketfactory]", "invoke";
70
// org.jboss.test.remoting.transport.{bisocket,http,socket}.ssl.config.FactoryConfigTestCase
71
permission javax.management.MBeanPermission "org.jboss.remoting.security.SSLServerSocketFactoryService#createServerSocket[jboss:type=serversocketfactory]", "invoke";
72
permission javax.management.MBeanPermission "org.jboss.remoting.security.SSLServerSocketFactoryService#SSLSocketBuilder[jboss:type=serversocketfactory]", "getAttribute";
73
permission javax.management.MBeanPermission "org.jboss.remoting.security.SSLServerSocketFactoryService#SSLSocketBuilder[jboss:type=serversocketfactory2]", "getAttribute";
75
// org.jboss.test.remoting.transport.rmi.ssl.config.FactoryConfigTestCase
76
permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.rmi.ssl.config.FactoryConfigTestCase$SerializableServerSocketFactory#SSLSocketBuilder[jboss:type=serversocketfactory]", "getAttribute";
77
permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.rmi.ssl.config.FactoryConfigTestCase$SerializableServerSocketFactory#SSLSocketBuilder[jboss:type=serversocketfactory2]", "getAttribute";
79
// org.jboss.test.remoting.transport.http.connection.socketfactory.by_mbean.SocketFactoryByMBeanTestCase
80
permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.http.connection.socketfactory.by_mbean.SocketFactoryTestServer$ServerSocketFactoryMock#createServerSocket[jboss:type=serversocketfactory]", "invoke";
82
// org.jboss.test.remoting.transport.http.ssl.config.FactoryConfigTestCase
83
permission javax.management.MBeanPermission "org.jboss.remoting.security.SSLServerSocketFactoryService#createServerSocket[jboss:type=serversocketfactory2]", "invoke";
85
// org.jboss.test.remoting.transport.rmi.connection.socketfactory.by_mbean.SocketFactoryByMBeanTestCase
86
permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.rmi.connection.socketfactory.by_mbean.SocketFactoryTestServer$ServerSocketFactoryMock#createServerSocket[jboss:type=serversocketfactory]", "invoke";
88
// org.jboss.test.remoting.transport.rmi.ssl.config.FactoryConfigTestCase
89
permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.rmi.ssl.config.FactoryConfigTestCase$SerializableServerSocketFactory#createServerSocket[jboss:type=serversocketfactory]", "invoke";
90
permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.rmi.ssl.config.FactoryConfigTestCase$SerializableServerSocketFactory#createServerSocket[jboss:type=serversocketfactory2]", "invoke";
92
// org.jboss.test.remoting.transport.{bisocket,rmi}.ssl.builder.SSLBisocketInvokerTestCase
93
permission javax.management.MBeanPermission "org.jboss.remoting.security.SSLServerSocketFactoryService#SSLSocketBuilder[test:type=serversocketfactory]", "getAttribute";
95
// Subclasses of org.jboss.test.remoting.transport.config.FactoryConfigTestCaseParent and FactoryConfigTestCaseSSLParent
96
// org.jboss.test.remoting.transport.{http,socket}.connection.socketfactory.by_mbean.SocketFactoryTestServer
97
permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.socket.connection.socketfactory.by_mbean.SocketFactoryTestServer$ServerSocketFactoryMock#createServerSocket[jboss:type=serversocketfactory]", "invoke";
99
// org.jboss.test.remoting.transport.http.proxy.ProxyAuthenticationTestCase
100
permission java.util.PropertyPermission "http.proxyHost", "write";
101
permission java.util.PropertyPermission "http.proxyPort", "write";
102
permission java.util.PropertyPermission "proxySet", "write";
103
permission java.util.PropertyPermission "http.proxy.username", "write";
104
permission java.util.PropertyPermission "http.proxy.password", "write";
108
//****************************************************************************************************************************************************************
109
//****************************************************************************************************************************************************************
110
//****************************************************************************
111
//**** Permissions used by the test suite ****
112
//**** (tests.functional.main, tests.functional.main.http, ****
113
//**** tests.functional.main.core, and tests.functional.main.http.core) ****
114
//****************************************************************************
115
//****************************************************************************
117
grant codeBase "file:${build.home}/output/tests/classes/-"
119
permission java.io.FilePermission "${build.home}${/}output${/}tests${/}classes${/}org${/}jboss${/}test${/}remoting${/}classloader${/}race${/}test.jar", "read";
121
// Used by the descendents of org.jboss.test.remoting.shutdown.ShutdownTestParent.
122
permission java.io.FilePermission "<<ALL FILES>>", "execute";
124
permission java.lang.reflect.ReflectPermission "suppressAccessChecks";
126
permission java.lang.RuntimePermission "enableContextClassLoaderOverride";
127
permission java.lang.RuntimePermission "createClassLoader";
128
permission java.lang.RuntimePermission "getClassLoader";
129
permission java.lang.RuntimePermission "setContextClassLoader";
130
permission java.lang.RuntimePermission "org.jboss.naming.NamingContext.getLocal";
132
permission javax.management.MBeanTrustPermission "register";
134
permission javax.management.MBeanPermission "org.jboss.remoting.detection.jndi.JNDIDetector#-[remoting:type=JNDIDetector]", "registerMBean";
135
permission javax.management.MBeanPermission "org.jboss.remoting.detection.multicast.MulticastDetector#-[remoting:*]", "registerMBean, unregisterMBean, queryMBeans, isInstanceOf";
136
permission javax.management.MBeanPermission "org.jboss.remoting.detection.multicast.MulticastDetector#*[test:type=MulticastDetector]", "registerMBean";
137
permission javax.management.MBeanPermission "org.jboss.remoting.network.NetworkRegistry#-[remoting:type=NetworkRegistry]", "registerMBean, unregisterMBean, queryMBeans, isInstanceOf, addNotificationListener";
138
permission javax.management.MBeanPermission "org.jboss.remoting.security.SSLServerSocketFactoryService#-[jboss:type=serversocketfactory2]", "registerMBean";
139
permission javax.management.MBeanPermission "org.jboss.remoting.security.SSLServerSocketFactoryService#-[*:type=serversocketfactory]", "registerMBean, queryMBeans, isInstanceOf";
140
permission javax.management.MBeanPermission "org.jboss.remoting.security.SSLServerSocketFactoryService#createServerSocket[jboss:*]", "invoke";
141
permission javax.management.MBeanPermission "org.jboss.remoting.security.SSLServerSocketFactoryService#createServerSocket[test:type=serversocketfactory]", "invoke";
142
permission javax.management.MBeanPermission "org.jboss.remoting.transport.*#-[jboss.remoting:service=invoker,*]", "unregisterMBean, registerMBean, queryMBeans, isInstanceOf";
143
permission javax.management.MBeanPermission "org.jboss.remoting.transport.Connector#-[jboss.remoting:type=Connector,*]", "registerMBean, unregisterMBean, queryMBeans, isInstanceOf";
144
permission javax.management.MBeanPermission "org.jboss.remoting.transport.Connector#-[jboss:type=connector]", "registerMBean";
145
permission javax.management.MBeanPermission "org.jboss.remoting.transport.Connector#-[test:type=connector]", "registerMBean";
146
permission javax.management.MBeanPermission "org.jboss.remoting.transport.Connector#-[test:transport=socket,type=connector]", "registerMBean";
147
permission javax.management.MBeanPermission "org.jboss.remoting.transport.Connector#-[test:transport=sslsocket,type=connector]", "registerMBean";
148
permission javax.management.MBeanPermission "org.jboss.remoting.transport.Connector#-[test:transport=coyote,type=connector]", "registerMBean";
149
permission javax.management.MBeanPermission "org.jboss.remoting.transport.Connector#-[test:type=Connector]","registerMBean";
150
permission javax.management.MBeanPermission "org.jboss.remoting.transport.socket.SocketServerInvoker#Configuration[jboss.remoting:service=invoker,*]", "getAttribute";
152
permission javax.management.MBeanPermission "org.jboss.test.remoting.detection.jndi.JNDIDetectorTest1$TestNetworkRegistry#-[remoting:type=NetworkRegistry]", "registerMBean";
153
permission javax.management.MBeanPermission "org.jboss.test.remoting.detection.jndi.JNDIDetectorTest2$TestNetworkRegistry#-[remoting:type=NetworkRegistry]", "registerMBean";
154
permission javax.management.MBeanPermission "org.jboss.test.remoting.detection.metadata.MetadataTestCase$TestNetworkRegistry#-[remoting:type=NetworkRegistry]", "registerMBean, unregisterMBean, queryMBeans, isInstanceOf, addNotificationListener";
155
permission javax.management.MBeanPermission "org.jboss.test.remoting.handler.mbean.MBeanHandler#-[test:type=handler]", "registerMBean";
156
permission javax.management.MBeanPermission "org.jboss.test.remoting.lease.InjectedConnectionListenerTestCase$TestConnectionListener#-[jboss:type=connectionlistener]", "registerMBean";
157
permission javax.management.MBeanPermission "org.jboss.test.remoting.lease.InjectedConnectionListenerTestCase$TestConnectionListener#handleConnectionException[jboss:type=connectionlistener]", "invoke";
158
permission javax.management.MBeanPermission "org.jboss.test.remoting.security.TestCallbackErrorHandler#*[test:type=TestCallbackErrorHandler]", "registerMBean, getAttribute";
159
permission javax.management.MBeanPermission "org.jboss.test.remoting.security.TestCallbackStore#*[test:type=Callbackstore]", "registerMBean, getAttribute, invoke";
160
permission javax.management.MBeanPermission "org.jboss.test.remoting.security.TestNetworkRegistry#*[test:type=TestNetworkRegistry]", "registerMBean, unregisterMBean, getAttribute";
161
permission javax.management.MBeanPermission "org.jboss.test.remoting.security.TestServerInvocationHandler#*[test:type=TestServerInvocationHandler]", "registerMBean, getAttribute, invoke";
162
permission javax.management.MBeanPermission "org.jboss.test.remoting.security.TestServerSocketFactory#*[test:type=SSLServerSocketFactoryService]", "registerMBean, getAttribute";
163
permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.config.FactoryConfigTestCaseParent$SelfIdentifyingServerSocketFactory#-[jboss:type=serversocketfactory]", "registerMBean, queryMBeans, isInstanceOf";
164
permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.http.connection.socketfactory.by_mbean.SocketFactoryTestServer$ServerSocketFactoryMock#-[jboss:type=serversocketfactory]", "registerMBean";
165
permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.rmi.connection.socketfactory.by_mbean.SocketFactoryTestServer$ServerSocketFactoryMock#-[jboss:type=serversocketfactory]", "registerMBean";
166
permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.rmi.ssl.config.FactoryConfigTestCase$SerializableServerSocketFactory#-[jboss:type=serversocketfactory2]", "registerMBean";
167
permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.rmi.ssl.config.FactoryConfigTestCase$SerializableServerSocketFactory#-[jboss:type=serversocketfactory]", "registerMBean";
168
permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.socket.connection.socketfactory.by_mbean.SocketFactoryTestServer$ServerSocketFactoryMock#-[jboss:type=serversocketfactory]", "registerMBean";
170
permission javax.management.MBeanServerPermission "createMBeanServer, findMBeanServer";
172
// org.jboss.test.remoting.classloader.InvokerTestCase
173
permission java.io.FilePermission "${build.home}${/}lib${/}-", "read";
174
permission java.io.FilePermission "${build.home}${/}output${/}lib${/}jboss-remoting.jar", "read";
175
permission java.lang.RuntimePermission "accessDeclaredMembers";
177
// org.jboss.test.remoting.transport.connector.ObjectNameWithZeroesAddressTestCase
178
permission javax.management.MBeanPermission "*#-[*:*]", "queryMBeans";
180
// Several test cases.
181
permission java.util.PropertyPermission "jrunit.bind_addr", "read";
183
// org.jboss.ant.taskdefs.XMLJUnitMultipleResultFormatter
184
permission java.util.PropertyPermission "jboss-junit-configuration", "read";
186
// This is technically the JNP server, but it seems intentional - note that this might mask other problems though
187
permission java.net.SocketPermission "*:*", "accept, connect, resolve";
189
// jndi detection test cases
190
permission java.util.PropertyPermission "java.naming.factory.initial", "write";
191
permission java.util.PropertyPermission "jboss.global.jnp.disableDiscovery", "read";
192
permission org.jboss.naming.JndiPermission "detection", "createSubcontext";
193
permission org.jboss.naming.JndiPermission "detection", "listBindings";
194
permission org.jboss.naming.JndiPermission "detection", "lookup";
195
permission org.jboss.naming.JndiPermission "detection/*", "rebind";
196
permission org.jboss.naming.JndiPermission "detection/*", "unbind";
198
// MalformedLocatorTestCase, RemoteClassloaderTestCase
199
permission java.lang.RuntimePermission "setIO";
201
// MalformedLocatorTestCase
202
permission java.util.PropertyPermission "suppressHostWarning", "write";
204
// org.jboss.test.remoting.security.InvokerRegistryUpdateTestCase
205
permission java.lang.RuntimePermission "invokerRegistryUpdate";
207
// TODO - this stuff ought to be in privileged blocks within the Ant JUnit task
208
permission java.util.PropertyPermission "*", "read, write"; // ugh
210
// TESTING ONLY - Use with the LoggingSecurityManager to locate needed permissions for the above block
211
// permission java.security.AllPermission;
213
/////////////////////////////////////////////////////////////////////////////////////////////
214
// TODO - We should use a version of JBoss logging + log4j that does this stuff in privileged blocks
216
permission java.io.FilePermission "${build.home}${/}src${/}etc${/}log4j.properties", "read";
217
permission java.io.FilePermission "${build.home}${/}src${/}etc${/}log4j.xml", "read";
218
permission java.io.FilePermission "${build.home}${/}lib${/}apache-log4j${/}lib${/}log4j.jar", "read";
219
permission java.io.FilePermission "${build.home}${/}output${/}classes${/}-", "read";
220
permission java.lang.RuntimePermission "accessClassInPackage.*";
221
permission java.util.PropertyPermission "org.jboss.logging.Logger.pluginClass", "read";
222
permission java.util.PropertyPermission "log4j.defaultInitOverride", "read";
223
permission java.util.PropertyPermission "elementAttributeLimit", "read";
224
permission java.util.PropertyPermission "maxOccurLimit", "read";
225
permission java.util.PropertyPermission "entityExpansionLimit", "read";
226
permission java.util.PropertyPermission "javax.xml.parsers.DocumentBuilderFactory", "read";
227
permission java.util.PropertyPermission "log4j.ignoreTCL", "read";
228
permission java.util.PropertyPermission "log4j.configuratorClass", "read";
229
permission java.util.PropertyPermission "log4j.configDebug", "read";
230
permission java.util.PropertyPermission "log4j.debug", "read";
231
permission java.util.PropertyPermission "log4j.configuration", "read";
232
permission java.util.PropertyPermission "org.apache.commons.logging.LogFactory", "read";
233
permission java.util.PropertyPermission "org.apache.commons.logging.Log", "read";
237
//****************************************************************************************************************************************************************
238
//****************************************************************************************************************************************************************
239
//******************************************************************
240
//**** Permissions for third party libraries ****
241
//******************************************************************
242
//******************************************************************
244
grant codeBase "file:${build.home}/lib/-"
246
permission java.security.AllPermission;
249
grant codeBase "file:${ant.library.dir}/-"
251
permission java.security.AllPermission;
b'\\ No newline at end of file'