Modifying /lib/security/java.policy

**VViCKiD** · 09-01-2004, 08:27 AM

Hi guys... just a quick question...
If I have a program that opens and writes to the java.security file, and then I use the program to create and load an aglet, would the policies that I specified through the program apply to the aglet ?

Thanks a million !!

**mnuttall** · 09-08-2004, 01:35 PM

If that is the properties file the JVM you are using is pointing to, it should. Then again it might be already loaded. I'm not sure if there is a way to reload it. Might voliate the security. If you launch the applet in a new JVM it might be ok.

**VViCKiD** · 09-09-2004, 12:48 PM

Thank mnuttall ...
I am now having a problem with java security policies and in particular, the java.util.property permission. It would be really appreciated and great if you could help me out a lil.

Ok here it goes.

I have a jar file with all these classes that I am extending in it. The jar file is in C:\NetAgent. so, the file name is C:\NetAgent\Bee20s.jar. I have another class that extends a class called "AgentWrapper". Class AgentWrapper is located in the jar file.

Now, I have another class "public class AwNode extends AgentWrapper". AwNode is located in the path C:\NetAgent\AgentWrapperNode\

I have a policy as such:

grant codeBase "file:/C:/NetAgent/*" {
permission java.util.PropertyPermission "*", "read, write";
permission java.io.FilePermission "C:\\NetAgent\\-", "read, write, delete, execute";
};

I have added this policy to the java.security file.
Now I keep getting security exceptions but I don't know why. I get this exception when I am run AwNode with the security manager.

Exception in thread "main" java.security.AccessControlException: access denied (
java.util.PropertyPermission * read,write)
at java.security.AccessControlContext.checkPermission(AccessControlConte
xt.java:270)
at java.security.AccessController.checkPermission(AccessController.java:
401)
at java.lang.SecurityManager.checkPermission(SecurityManager.java:542)
at java.lang.SecurityManager.checkPropertiesAccess(SecurityManager.java:
1259)
at java.lang.System.getProperties(System.java:500)
at com.toshiba.beegent.AgentWrapper.getClassDirectory(AgentWrapper.java:
853)
at com.toshiba.beegent.AgentWrapper.<init>(AgentWrapper.java:116)
at AwNode.<init>(AwNode.java:10)
at AwNode.main(AwNode.java:21)

However, everything seems to run ok when I modify the policy to be:

grant codeBase "file:/C:/NetAgent/*" {
permission java.util.PropertyPermission "*", "read, write";
permission java.io.FilePermission "C:\\NetAgent\\-", "read, write, delete, execute";
};

All I want to be able to do is to have control over AwNode. I believe I must provide the right permissions to Bee20s.jar to be able to do this.

Thanks for your help.. Much appreciated !

**VViCKiD** · 09-09-2004, 12:48 PM

oops...
the second policy should be
grant codeBase "file:/C:/NetAgent/-" {
permission java.util.PropertyPermission "*", "read, write";
permission java.io.FilePermission "C:\\NetAgent\\-", "read, write, delete, execute";
};

sorry...

**mnuttall** · 09-13-2004, 07:46 AM

Sorry I didn't get back with you.

I've not had to do alot with policy files. I've probably should have but all my projects have been in house so there has been little need.

I suggest checking out the forums on java.sun or one of the main java newsgroups (check out google).

Thread: Modifying /lib/security/java.policy

Thread Tools

Display

Modifying /lib/security/java.policy

Posting Permissions