← Back to branch summary

~ubuntu-branches/ubuntu/wily/libjboss-remoting-java/wily

« back to all changes in this revision

Viewing changes to src/etc/remoting.security.policy.tests

  • Committer: Package Import Robot
  • Author(s): Torsten Werner
  • Date: 2011-09-09 14:01:03 UTC
  • mfrom: (1.1.6 upstream)
  • Revision ID: package-import@ubuntu.com-20110909140103-hqokx61534tas9rg
Tags: 2.5.3.SP1-1
http://bugs.debian.org/628303
* Newer but not newest upstream release. Do not build samples.
* Change debian/watch to upstream's svn repo.
* Add patch to fix compile error caused by tomcat update.
  (Closes: #628303)
* Switch to source format 3.0.
* Switch to debhelper level 7.
* Remove useless Depends.
* Update Standards-Version: 3.9.2.
* Update README.source.

Show diffs side-by-side

added added

removed removed

Lines of Context:
src/etc/remoting.security.policy.tests
 
1
// JBoss, Home of Professional Open Source
 
2
// Copyright 2005, JBoss Inc., and individual contributors as indicated
 
3
// by the @authors tag. See the copyright.txt in the distribution for a
 
4
// full listing of individual contributors.
 
5
//
 
6
// This is free software; you can redistribute it and/or modify it
 
7
// under the terms of the GNU Lesser General Public License as
 
8
// published by the Free Software Foundation; either version 2.1 of
 
9
// the License, or (at your option) any later version.
 
10
//
 
11
// This software is distributed in the hope that it will be useful,
 
12
// but WITHOUT ANY WARRANTY; without even the implied warranty of
 
13
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
 
14
// Lesser General Public License for more details.
 
15
//
 
16
// You should have received a copy of the GNU Lesser General Public
 
17
// License along with this software; if not, write to the Free
 
18
// Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
 
19
// 02110-1301 USA, or see the FSF site: http://www.fsf.org.
 
20
//
 
21
 
 
22
//****************************************************************************************************************************************************************
 
23
//****************************************************************************************************************************************************************
 
24
//******************************************************************
 
25
//****   Permissions needed by Remoting to run the test suite   ****
 
26
//******************************************************************
 
27
//******************************************************************     
 
28
 
 
29
grant codeBase "file:${build.home}/output/lib/jboss-remoting.jar"
 
30
{
 
31
    // Permission to read test keystores
 
32
    permission java.io.FilePermission "${build.home}${/}output${/}tests${/}classes${/}-", "read";
 
33
    
 
34
    // Permission for org.jboss.remoting.callback.CallbackStore
 
35
    permission java.io.FilePermission "${build.home}${/}output${/}tests${/}classes${/}-", "read, write, delete";
 
36
 
 
37
    // Permission for org.jboss.remoting.ConnectionNotifier   
 
38
    permission javax.management.MBeanPermission "org.jboss.test.remoting.lease.InjectedConnectionListenerTestCase$TestConnectionListener#handleConnectionException[jboss:type=connectionlistener]", "invoke";
 
39
 
 
40
    // org.jboss.test.remoting.detection.metadata.MetadataTestCase
 
41
    permission javax.management.MBeanPermission "org.jboss.test.remoting.detection.metadata.MetadataTestCase$TestNetworkRegistry#-[remoting:type=NetworkRegistry]", "isInstanceOf";
 
42
 
 
43
    // org.jboss.test.remoting.handler.mbean.ServerTest
 
44
    permission javax.management.MBeanPermission "org.jboss.test.remoting.handler.mbean.MBeanHandler#Invoker[test:type=handler]", "setAttribute";
 
45
    permission javax.management.MBeanPermission "org.jboss.test.remoting.handler.mbean.MBeanHandler#MBeanServer[test:type=handler]", "setAttribute";
 
46
    permission javax.management.MBeanPermission "org.jboss.test.remoting.handler.mbean.MBeanHandler#*[test:type=handler]", "invoke";
 
47
 
 
48
    // org.jboss.test.remoting.security.CallbackErrorHandlerProxyTestCase
 
49
    permission javax.management.MBeanPermission "org.jboss.test.remoting.security.TestCallbackErrorHandler#*[test:type=TestCallbackErrorHandler]", "setAttribute, invoke";
 
50
 
 
51
    // org.jboss.test.remoting.security.CallbackStoreProxyTestCase
 
52
    permission javax.management.MBeanPermission "org.jboss.test.remoting.security.TestCallbackStore#*[test:type=Callbackstore]", "setAttribute, invoke";
 
53
 
 
54
    // org.jboss.test.remoting.security.NetworkRegistryProxyTestCase
 
55
    permission javax.management.MBeanPermission "org.jboss.test.remoting.security.TestNetworkRegistry#addServer[test:type=TestNetworkRegistry]", "invoke";
 
56
 
 
57
    // org.jboss.test.remoting.security.ServerInvokerHandlerProxyTestCase
 
58
    permission javax.management.MBeanPermission "org.jboss.test.remoting.security.TestServerInvocationHandler#*[test:type=TestServerInvocationHandler]", "setAttribute, invoke";
 
59
 
 
60
    // org.jboss.test.remoting.security.ServerSocketFactoryProxyTestCase
 
61
    permission javax.management.MBeanPermission "org.jboss.test.remoting.security.TestServerSocketFactory#createServerSocket[test:type=SSLServerSocketFactoryService]", "invoke";
 
62
 
 
63
    // org.jboss.test.remoting.transport.bisocket.ssl.builder.SSLBisocketInvokerTestCase
 
64
    // org.jboss.test.remoting.transport.http.ssl.basic.HTTPSInvokerTestCase
 
65
    // org.jboss.test.remoting.transport.http.ssl.builder.HTTPSInvokerTestCase
 
66
    // org.jboss.test.remoting.transport.http.ssl.custom.HTTPSInvokerTestCase
 
67
    // org.jboss.test.remoting.transport.rmi.ssl.builder.RMIInvokerTestCase
 
68
    permission javax.management.MBeanPermission "org.jboss.remoting.security.SSLServerSocketFactoryService#createServerSocket[test:type=serversocketfactory]", "invoke";
 
69
    
 
70
    // org.jboss.test.remoting.transport.{bisocket,http,socket}.ssl.config.FactoryConfigTestCase
 
71
    permission javax.management.MBeanPermission "org.jboss.remoting.security.SSLServerSocketFactoryService#createServerSocket[jboss:type=serversocketfactory]", "invoke";
 
72
    permission javax.management.MBeanPermission "org.jboss.remoting.security.SSLServerSocketFactoryService#SSLSocketBuilder[jboss:type=serversocketfactory]", "getAttribute";
 
73
    permission javax.management.MBeanPermission "org.jboss.remoting.security.SSLServerSocketFactoryService#SSLSocketBuilder[jboss:type=serversocketfactory2]", "getAttribute";
 
74
    
 
75
    // org.jboss.test.remoting.transport.rmi.ssl.config.FactoryConfigTestCase
 
76
    permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.rmi.ssl.config.FactoryConfigTestCase$SerializableServerSocketFactory#SSLSocketBuilder[jboss:type=serversocketfactory]", "getAttribute";
 
77
    permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.rmi.ssl.config.FactoryConfigTestCase$SerializableServerSocketFactory#SSLSocketBuilder[jboss:type=serversocketfactory2]", "getAttribute";
 
78
    
 
79
    // org.jboss.test.remoting.transport.http.connection.socketfactory.by_mbean.SocketFactoryByMBeanTestCase
 
80
    permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.http.connection.socketfactory.by_mbean.SocketFactoryTestServer$ServerSocketFactoryMock#createServerSocket[jboss:type=serversocketfactory]", "invoke";
 
81
 
 
82
    // org.jboss.test.remoting.transport.http.ssl.config.FactoryConfigTestCase
 
83
    permission javax.management.MBeanPermission "org.jboss.remoting.security.SSLServerSocketFactoryService#createServerSocket[jboss:type=serversocketfactory2]", "invoke";
 
84
 
 
85
    // org.jboss.test.remoting.transport.rmi.connection.socketfactory.by_mbean.SocketFactoryByMBeanTestCase
 
86
    permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.rmi.connection.socketfactory.by_mbean.SocketFactoryTestServer$ServerSocketFactoryMock#createServerSocket[jboss:type=serversocketfactory]", "invoke";
 
87
    
 
88
    // org.jboss.test.remoting.transport.rmi.ssl.config.FactoryConfigTestCase
 
89
    permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.rmi.ssl.config.FactoryConfigTestCase$SerializableServerSocketFactory#createServerSocket[jboss:type=serversocketfactory]", "invoke";
 
90
    permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.rmi.ssl.config.FactoryConfigTestCase$SerializableServerSocketFactory#createServerSocket[jboss:type=serversocketfactory2]", "invoke";
 
91
 
 
92
    // org.jboss.test.remoting.transport.{bisocket,rmi}.ssl.builder.SSLBisocketInvokerTestCase
 
93
    permission javax.management.MBeanPermission "org.jboss.remoting.security.SSLServerSocketFactoryService#SSLSocketBuilder[test:type=serversocketfactory]", "getAttribute";
 
94
 
 
95
    // Subclasses of org.jboss.test.remoting.transport.config.FactoryConfigTestCaseParent and FactoryConfigTestCaseSSLParent
 
96
    // org.jboss.test.remoting.transport.{http,socket}.connection.socketfactory.by_mbean.SocketFactoryTestServer
 
97
    permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.socket.connection.socketfactory.by_mbean.SocketFactoryTestServer$ServerSocketFactoryMock#createServerSocket[jboss:type=serversocketfactory]", "invoke";
 
98
 
 
99
    // org.jboss.test.remoting.transport.http.proxy.ProxyAuthenticationTestCase
 
100
    permission java.util.PropertyPermission "http.proxyHost", "write";
 
101
    permission java.util.PropertyPermission "http.proxyPort", "write";
 
102
    permission java.util.PropertyPermission "proxySet", "write";
 
103
    permission java.util.PropertyPermission "http.proxy.username", "write";
 
104
    permission java.util.PropertyPermission "http.proxy.password", "write";
 
105
};
 
106
 
 
107
 
 
108
//****************************************************************************************************************************************************************
 
109
//****************************************************************************************************************************************************************
 
110
//****************************************************************************
 
111
//****              Permissions used by the test suite                    ****
 
112
//****  (tests.functional.main, tests.functional.main.http,               ****
 
113
//****   tests.functional.main.core, and tests.functional.main.http.core) ****
 
114
//****************************************************************************
 
115
//****************************************************************************
 
116
 
 
117
grant codeBase "file:${build.home}/output/tests/classes/-"
 
118
{
 
119
    permission java.io.FilePermission "${build.home}${/}output${/}tests${/}classes${/}org${/}jboss${/}test${/}remoting${/}classloader${/}race${/}test.jar", "read";
 
120
 
 
121
    // Used by the descendents of org.jboss.test.remoting.shutdown.ShutdownTestParent.
 
122
    permission java.io.FilePermission "<<ALL FILES>>", "execute";
 
123
    
 
124
    permission java.lang.reflect.ReflectPermission "suppressAccessChecks";
 
125
 
 
126
    permission java.lang.RuntimePermission "enableContextClassLoaderOverride";
 
127
    permission java.lang.RuntimePermission "createClassLoader";
 
128
    permission java.lang.RuntimePermission "getClassLoader";
 
129
    permission java.lang.RuntimePermission "setContextClassLoader";
 
130
    permission java.lang.RuntimePermission "org.jboss.naming.NamingContext.getLocal";
 
131
        
 
132
    permission javax.management.MBeanTrustPermission "register";
 
133
 
 
134
    permission javax.management.MBeanPermission "org.jboss.remoting.detection.jndi.JNDIDetector#-[remoting:type=JNDIDetector]", "registerMBean";
 
135
    permission javax.management.MBeanPermission "org.jboss.remoting.detection.multicast.MulticastDetector#-[remoting:*]", "registerMBean, unregisterMBean, queryMBeans, isInstanceOf";
 
136
    permission javax.management.MBeanPermission "org.jboss.remoting.detection.multicast.MulticastDetector#*[test:type=MulticastDetector]", "registerMBean";
 
137
    permission javax.management.MBeanPermission "org.jboss.remoting.network.NetworkRegistry#-[remoting:type=NetworkRegistry]", "registerMBean, unregisterMBean, queryMBeans, isInstanceOf, addNotificationListener";
 
138
    permission javax.management.MBeanPermission "org.jboss.remoting.security.SSLServerSocketFactoryService#-[jboss:type=serversocketfactory2]", "registerMBean";
 
139
    permission javax.management.MBeanPermission "org.jboss.remoting.security.SSLServerSocketFactoryService#-[*:type=serversocketfactory]", "registerMBean, queryMBeans, isInstanceOf";
 
140
    permission javax.management.MBeanPermission "org.jboss.remoting.security.SSLServerSocketFactoryService#createServerSocket[jboss:*]", "invoke";
 
141
    permission javax.management.MBeanPermission "org.jboss.remoting.security.SSLServerSocketFactoryService#createServerSocket[test:type=serversocketfactory]", "invoke";
 
142
    permission javax.management.MBeanPermission "org.jboss.remoting.transport.*#-[jboss.remoting:service=invoker,*]", "unregisterMBean, registerMBean, queryMBeans, isInstanceOf";
 
143
    permission javax.management.MBeanPermission "org.jboss.remoting.transport.Connector#-[jboss.remoting:type=Connector,*]", "registerMBean, unregisterMBean, queryMBeans, isInstanceOf";
 
144
    permission javax.management.MBeanPermission "org.jboss.remoting.transport.Connector#-[jboss:type=connector]", "registerMBean";
 
145
    permission javax.management.MBeanPermission "org.jboss.remoting.transport.Connector#-[test:type=connector]", "registerMBean";
 
146
    permission javax.management.MBeanPermission "org.jboss.remoting.transport.Connector#-[test:transport=socket,type=connector]", "registerMBean";
 
147
    permission javax.management.MBeanPermission "org.jboss.remoting.transport.Connector#-[test:transport=sslsocket,type=connector]", "registerMBean";
 
148
    permission javax.management.MBeanPermission "org.jboss.remoting.transport.Connector#-[test:transport=coyote,type=connector]", "registerMBean";
 
149
    permission javax.management.MBeanPermission "org.jboss.remoting.transport.Connector#-[test:type=Connector]","registerMBean";
 
150
    permission javax.management.MBeanPermission "org.jboss.remoting.transport.socket.SocketServerInvoker#Configuration[jboss.remoting:service=invoker,*]", "getAttribute";
 
151
        
 
152
    permission javax.management.MBeanPermission "org.jboss.test.remoting.detection.jndi.JNDIDetectorTest1$TestNetworkRegistry#-[remoting:type=NetworkRegistry]", "registerMBean";
 
153
    permission javax.management.MBeanPermission "org.jboss.test.remoting.detection.jndi.JNDIDetectorTest2$TestNetworkRegistry#-[remoting:type=NetworkRegistry]", "registerMBean";
 
154
    permission javax.management.MBeanPermission "org.jboss.test.remoting.detection.metadata.MetadataTestCase$TestNetworkRegistry#-[remoting:type=NetworkRegistry]", "registerMBean, unregisterMBean, queryMBeans, isInstanceOf, addNotificationListener";
 
155
    permission javax.management.MBeanPermission "org.jboss.test.remoting.handler.mbean.MBeanHandler#-[test:type=handler]", "registerMBean";
 
156
    permission javax.management.MBeanPermission "org.jboss.test.remoting.lease.InjectedConnectionListenerTestCase$TestConnectionListener#-[jboss:type=connectionlistener]", "registerMBean";
 
157
    permission javax.management.MBeanPermission "org.jboss.test.remoting.lease.InjectedConnectionListenerTestCase$TestConnectionListener#handleConnectionException[jboss:type=connectionlistener]", "invoke";
 
158
    permission javax.management.MBeanPermission "org.jboss.test.remoting.security.TestCallbackErrorHandler#*[test:type=TestCallbackErrorHandler]", "registerMBean, getAttribute";
 
159
    permission javax.management.MBeanPermission "org.jboss.test.remoting.security.TestCallbackStore#*[test:type=Callbackstore]", "registerMBean, getAttribute, invoke";
 
160
    permission javax.management.MBeanPermission "org.jboss.test.remoting.security.TestNetworkRegistry#*[test:type=TestNetworkRegistry]", "registerMBean, unregisterMBean, getAttribute";
 
161
    permission javax.management.MBeanPermission "org.jboss.test.remoting.security.TestServerInvocationHandler#*[test:type=TestServerInvocationHandler]", "registerMBean, getAttribute, invoke";
 
162
    permission javax.management.MBeanPermission "org.jboss.test.remoting.security.TestServerSocketFactory#*[test:type=SSLServerSocketFactoryService]", "registerMBean, getAttribute";
 
163
    permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.config.FactoryConfigTestCaseParent$SelfIdentifyingServerSocketFactory#-[jboss:type=serversocketfactory]", "registerMBean, queryMBeans, isInstanceOf";
 
164
    permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.http.connection.socketfactory.by_mbean.SocketFactoryTestServer$ServerSocketFactoryMock#-[jboss:type=serversocketfactory]", "registerMBean";
 
165
    permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.rmi.connection.socketfactory.by_mbean.SocketFactoryTestServer$ServerSocketFactoryMock#-[jboss:type=serversocketfactory]", "registerMBean";
 
166
    permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.rmi.ssl.config.FactoryConfigTestCase$SerializableServerSocketFactory#-[jboss:type=serversocketfactory2]", "registerMBean";
 
167
    permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.rmi.ssl.config.FactoryConfigTestCase$SerializableServerSocketFactory#-[jboss:type=serversocketfactory]", "registerMBean";
 
168
    permission javax.management.MBeanPermission "org.jboss.test.remoting.transport.socket.connection.socketfactory.by_mbean.SocketFactoryTestServer$ServerSocketFactoryMock#-[jboss:type=serversocketfactory]", "registerMBean";
 
169
 
 
170
    permission javax.management.MBeanServerPermission "createMBeanServer, findMBeanServer";
 
171
    
 
172
    // org.jboss.test.remoting.classloader.InvokerTestCase
 
173
    permission java.io.FilePermission "${build.home}${/}lib${/}-", "read";
 
174
    permission java.io.FilePermission "${build.home}${/}output${/}lib${/}jboss-remoting.jar", "read";
 
175
    permission java.lang.RuntimePermission "accessDeclaredMembers";
 
176
    
 
177
    // org.jboss.test.remoting.transport.connector.ObjectNameWithZeroesAddressTestCase
 
178
    permission javax.management.MBeanPermission "*#-[*:*]", "queryMBeans";
 
179
        
 
180
    // Several test cases.
 
181
    permission java.util.PropertyPermission "jrunit.bind_addr", "read";
 
182
    
 
183
    // org.jboss.ant.taskdefs.XMLJUnitMultipleResultFormatter
 
184
    permission java.util.PropertyPermission "jboss-junit-configuration", "read";
 
185
    
 
186
    // This is technically the JNP server, but it seems intentional - note that this might mask other problems though
 
187
    permission java.net.SocketPermission "*:*", "accept, connect, resolve";
 
188
    
 
189
    // jndi detection test cases
 
190
    permission java.util.PropertyPermission "java.naming.factory.initial", "write";
 
191
    permission java.util.PropertyPermission "jboss.global.jnp.disableDiscovery", "read";
 
192
    permission org.jboss.naming.JndiPermission "detection", "createSubcontext";
 
193
    permission org.jboss.naming.JndiPermission "detection", "listBindings";
 
194
    permission org.jboss.naming.JndiPermission "detection", "lookup";
 
195
    permission org.jboss.naming.JndiPermission "detection/*", "rebind"; 
 
196
    permission org.jboss.naming.JndiPermission "detection/*", "unbind"; 
 
197
 
 
198
    // MalformedLocatorTestCase, RemoteClassloaderTestCase
 
199
    permission java.lang.RuntimePermission "setIO";
 
200
        
 
201
    // MalformedLocatorTestCase
 
202
    permission java.util.PropertyPermission "suppressHostWarning", "write";
 
203
    
 
204
    // org.jboss.test.remoting.security.InvokerRegistryUpdateTestCase
 
205
    permission java.lang.RuntimePermission "invokerRegistryUpdate";
 
206
 
 
207
    // TODO - this stuff ought to be in privileged blocks within the Ant JUnit task
 
208
    permission java.util.PropertyPermission "*", "read, write"; // ugh
 
209
 
 
210
    // TESTING ONLY - Use with the LoggingSecurityManager to locate needed permissions for the above block
 
211
//    permission java.security.AllPermission;
 
212
 
 
213
/////////////////////////////////////////////////////////////////////////////////////////////
 
214
// TODO - We should use a version of JBoss logging + log4j that does this stuff in privileged blocks
 
215
 
 
216
      permission java.io.FilePermission "${build.home}${/}src${/}etc${/}log4j.properties", "read";
 
217
      permission java.io.FilePermission "${build.home}${/}src${/}etc${/}log4j.xml", "read";
 
218
      permission java.io.FilePermission "${build.home}${/}lib${/}apache-log4j${/}lib${/}log4j.jar", "read";
 
219
      permission java.io.FilePermission "${build.home}${/}output${/}classes${/}-", "read";
 
220
      permission java.lang.RuntimePermission "accessClassInPackage.*";
 
221
      permission java.util.PropertyPermission "org.jboss.logging.Logger.pluginClass", "read";
 
222
      permission java.util.PropertyPermission "log4j.defaultInitOverride", "read";
 
223
      permission java.util.PropertyPermission "elementAttributeLimit", "read";
 
224
      permission java.util.PropertyPermission "maxOccurLimit", "read";
 
225
      permission java.util.PropertyPermission "entityExpansionLimit", "read";
 
226
      permission java.util.PropertyPermission "javax.xml.parsers.DocumentBuilderFactory", "read";
 
227
      permission java.util.PropertyPermission "log4j.ignoreTCL", "read";
 
228
      permission java.util.PropertyPermission "log4j.configuratorClass", "read";
 
229
      permission java.util.PropertyPermission "log4j.configDebug", "read";
 
230
      permission java.util.PropertyPermission "log4j.debug", "read";
 
231
      permission java.util.PropertyPermission "log4j.configuration", "read";
 
232
      permission java.util.PropertyPermission "org.apache.commons.logging.LogFactory", "read";
 
233
      permission java.util.PropertyPermission "org.apache.commons.logging.Log", "read";
 
234
};
 
235
 
 
236
 
 
237
//****************************************************************************************************************************************************************
 
238
//****************************************************************************************************************************************************************
 
239
//******************************************************************
 
240
//****           Permissions for third party libraries          ****
 
241
//******************************************************************
 
242
//******************************************************************
 
243
 
 
244
grant codeBase "file:${build.home}/lib/-"
 
245
{
 
246
    permission java.security.AllPermission;
 
247
};
 
248
 
 
249
grant codeBase "file:${ant.library.dir}/-"
 
250
{
 
251
    permission java.security.AllPermission;
 
252
};
 
 
b'\\ No newline at end of file'