8159526: Deprivilege jdk.httpserver

Reviewed-by: chegar, alanb, michaelm, mchung
2017-09-26 15:08:56 +05:30 · 2017-09-26 15:08:56 +05:30 · 02ba926da2
commit 02ba926da2
parent b98d0bda76
2 changed files with 5 additions and 1 deletions
--- a/make/common/Modules.gmk
+++ b/make/common/Modules.gmk
@ -58,7 +58,6 @@ BOOT_MODULES += \
    java.rmi \
    java.security.sasl \
    java.xml \
-    jdk.httpserver \
    jdk.internal.vm.ci \
    jdk.management \
    jdk.management.agent \
@ -112,6 +111,7 @@ PLATFORM_MODULES += \
    jdk.crypto.cryptoki \
    jdk.crypto.ec \
    jdk.dynalink \
+    jdk.httpserver \
    jdk.incubator.httpclient \
    jdk.jsobject \
    jdk.localedata \
--- a/src/java.base/share/lib/security/default.policy
+++ b/src/java.base/share/lib/security/default.policy
@ -142,6 +142,10 @@ grant codeBase "jrt:/jdk.dynalink" {
    permission java.security.AllPermission;
 };

+grant codeBase "jrt:/jdk.httpserver" {
+    permission java.security.AllPermission;
+};
+
 grant codeBase "jrt:/jdk.internal.le" {
    permission java.security.AllPermission;
 };