Merge in ant and update from origin/masterv20120405-1314 N20120417-1633 N20120417-1307 N20120416-1918 I20120417-1000 I20120417-0800 I20120417-0334 I20120417-0255 I20120417-0235 I20120417-0211 I20120417-0142 I20120416-2327 I20120416-1738 I20120416-1719 I20120416-1643 I20120416-1623 I20120416-1600 I20120416-1508 I20120413-1800 I20120411-2034 I20120411-1737 I20120411-0906 I20120411-0258 I20120410-2330 I20120410-2037 I20120410-1710 I20120410-0633 I20120410-0320 I20120410-0304 I20120410-0252 I20120410-0238 I20120410-0216 I20120410-0152 I20120410-0136 I20120410-0122 I20120410-0102 I20120410-0049 I20120410-0027 I20120409-2358 I20120409-2119 I20120409-2018 I20120409-1957 I20120409-1911 I20120409-1708 I20120409-1622 I20120409-1353 I20120409-0926 I20120409-0904 I20120409-0315 I20120409-0131 I20120408-2304 I20120408-2000 I20120408-1521 I20120408-1324 I20120408-1214 I20120408-1110 I20120408-0330 I20120408-0246 I20120408-0231 I20120408-0216 I20120408-0152 I20120408-0036 I20120408-0012 I20120407-2339 I20120407-2245 I20120407-2106 I20120407-1941 I20120407-1904 I20120407-1840 I20120407-1826 I20120407-1732 I20120407-1717 I20120407-1631 I20120407-0358 I20120407-0346 I20120407-0329 I20120407-0305 I20120407-0217 I20120407-0205 I20120407-0138 I20120407-0103 I20120407-0040 I20120407-0024 I20120406-2327 I20120406-0935 I20120406-0915 I20120406-0250 I20120406-0231 I20120406-0006 I20120405-2131 I20120405-1735 I20120405-1114

author: Paul Webster 2012-04-05 13:14:49 +0000
committer: Paul Webster 2012-04-05 13:14:49 +0000
commit: e853498baecddc18bd367cd1eff02dbcbf732064 (patch)
tree: aaed239c51d19c4b9165dc3a09152309d3e9e8fb /ant/org.eclipse.ant.core/src/org/eclipse/ant/internal/core/AntSecurityManager.java
parent: 624dafba89ca9abed4397b97a1fb97b1c1b4e27f (diff)
download: eclipse.platform-e853498baecddc18bd367cd1eff02dbcbf732064.tar.gz
eclipse.platform-e853498baecddc18bd367cd1eff02dbcbf732064.tar.xz
eclipse.platform-e853498baecddc18bd367cd1eff02dbcbf732064.zip
1 files changed, 373 insertions, 0 deletions
diff --git a/ant/org.eclipse.ant.core/src/org/eclipse/ant/internal/core/AntSecurityManager.java b/ant/org.eclipse.ant.core/src/org/eclipse/ant/internal/core/AntSecurityManager.java
new file mode 100644
index 000000000..fd79ddeea
--- /dev/null
+++ b/ant/org.eclipse.ant.core/src/org/eclipse/ant/internal/core/AntSecurityManager.java
@@ -0,0 +1,373 @@
+/*******************************************************************************
+ * Copyright (c) 2000, 2005 IBM Corporation and others.
+ * All rights reserved. This program and the accompanying materials
+ * are made available under the terms of the Eclipse Public License v1.0
+ * which accompanies this distribution, and is available at
+ * http://www.eclipse.org/legal/epl-v10.html
+ * 
+ * Contributors:
+ *     IBM Corporation - initial API and implementation
+ *******************************************************************************/
+package org.eclipse.ant.internal.core;
+
+
+import java.io.FileDescriptor;
+import java.net.InetAddress;
+import java.net.SocketPermission;
+import java.security.Permission;
+import java.util.PropertyPermission;
+import org.eclipse.ant.core.AntSecurityException;
+
+/**
+ * A security manager that always throws an <code>AntSecurityException</code>
+ * if the calling thread attempts to cause the Java Virtual Machine to 
+ * exit/halt or if the restricted thread attempts to set a System property.
+ * Otherwise this manager just delegates to the pre-existing manager
+ * passed in the constructor or mimics the default security manager behavior
+ */
+public class AntSecurityManager extends SecurityManager {
+
+	private SecurityManager fSecurityManager= null;
+	private Thread fRestrictedThread= null;
+	//ensure that the PropertyPermission class is loaded before we 
+	//start checking permissions: bug 85908
+	private static final PropertyPermission fgPropertyPermission= new PropertyPermission("*", "write"); //$NON-NLS-1$ //$NON-NLS-2$
+	
+	private boolean fAllowSettingSystemProperties= true;
+	
+	public AntSecurityManager(SecurityManager securityManager, Thread restrictedThread, boolean allowSettingProperties) {
+		fSecurityManager= securityManager;
+		fRestrictedThread= restrictedThread;
+		fAllowSettingSystemProperties= allowSettingProperties;
+	}
+	
+	public AntSecurityManager(SecurityManager securityManager, Thread restrictedThread) {
+		this(securityManager, restrictedThread, true);
+	}
+	
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkExit(int)
+	 */
+	public void checkExit(int status) {
+		//no exit allowed from the restricted thread...System.exit is being called
+		//by some ant task...do not want Eclipse to exit if
+		//in the same VM.
+		if (Thread.currentThread() == fRestrictedThread) {
+			throw new AntSecurityException();
+		}
+		if (fSecurityManager != null) {
+			fSecurityManager.checkExit(status);
+		}
+	}
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkAccept(java.lang.String, int)
+	 */
+	public void checkAccept(String host, int port) {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkAccept(host, port);
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkAccess(java.lang.Thread)
+	 */
+	public void checkAccess(Thread t) {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkAccess(t);
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkAccess(java.lang.ThreadGroup)
+	 */
+	public void checkAccess(ThreadGroup g) {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkAccess(g);
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkAwtEventQueueAccess()
+	 */
+	public void checkAwtEventQueueAccess() {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkAwtEventQueueAccess();
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkConnect(java.lang.String, int, java.lang.Object)
+	 */
+	public void checkConnect(String host, int port, Object context) {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkConnect(host, port, context);
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkConnect(java.lang.String, int)
+	 */
+	public void checkConnect(String host, int port) {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkConnect(host, port);
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkCreateClassLoader()
+	 */
+	public void checkCreateClassLoader() {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkCreateClassLoader();
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkDelete(java.lang.String)
+	 */
+	public void checkDelete(String file) {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkDelete(file);
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkExec(java.lang.String)
+	 */
+	public void checkExec(String cmd) {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkExec(cmd);
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkLink(java.lang.String)
+	 */
+	public void checkLink(String lib) {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkLink(lib);
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkListen(int)
+	 */
+	public void checkListen(int port) {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkListen(port);
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkMemberAccess(java.lang.Class, int)
+	 */
+	public void checkMemberAccess(Class clazz, int which) {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkMemberAccess(clazz, which);
+		}
+	}
+
+	/**
+	 * @see java.lang.SecurityManager#checkMulticast(java.net.InetAddress, byte)
+	 * @deprecated
+	 */
+	public void checkMulticast(InetAddress maddr, byte ttl) {
+		if (fSecurityManager != null) {
+			String host = maddr.getHostAddress();
+			if (!host.startsWith("[") && host.indexOf(':') != -1) { //$NON-NLS-1$
+	   			host = "[" + host + "]"; //$NON-NLS-1$ //$NON-NLS-2$
+			}
+	    	checkPermission(new SocketPermission(host, "accept,connect")); //$NON-NLS-1$
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkMulticast(java.net.InetAddress)
+	 */
+	public void checkMulticast(InetAddress maddr) {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkMulticast(maddr);
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkPackageAccess(java.lang.String)
+	 */
+	public void checkPackageAccess(String pkg) {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkPackageAccess(pkg);
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkPackageDefinition(java.lang.String)
+	 */
+	public void checkPackageDefinition(String pkg) {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkPackageDefinition(pkg);
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkPermission(java.security.Permission, java.lang.Object)
+	 */
+	public void checkPermission(Permission perm, Object context) {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkPermission(perm, context);
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkPermission(java.security.Permission)
+	 */
+	public void checkPermission(Permission perm) {
+		if (!fAllowSettingSystemProperties && fgPropertyPermission.implies(perm) && fRestrictedThread == Thread.currentThread()) {
+			//attempting to write a system property
+			throw new AntSecurityException();
+		}
+		if (fSecurityManager != null) {
+			fSecurityManager.checkPermission(perm);
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkPrintJobAccess()
+	 */
+	public void checkPrintJobAccess() {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkPrintJobAccess();
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkPropertiesAccess()
+	 */
+	public void checkPropertiesAccess() {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkPropertiesAccess();
+		}
+		super.checkPropertiesAccess();
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkPropertyAccess(java.lang.String)
+	 */
+	public void checkPropertyAccess(String key) {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkPropertyAccess(key);
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkRead(java.io.FileDescriptor)
+	 */
+	public void checkRead(FileDescriptor fd) {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkRead(fd);
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkRead(java.lang.String, java.lang.Object)
+	 */
+	public void checkRead(String file, Object context) {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkRead(file, context);
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkRead(java.lang.String)
+	 */
+	public void checkRead(String file) {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkRead(file);
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkSecurityAccess(java.lang.String)
+	 */
+	public void checkSecurityAccess(String target) {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkSecurityAccess(target);
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkSetFactory()
+	 */
+	public void checkSetFactory() {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkSetFactory();
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkSystemClipboardAccess()
+	 */
+	public void checkSystemClipboardAccess() {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkSystemClipboardAccess();
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkTopLevelWindow(java.lang.Object)
+	 */
+	public boolean checkTopLevelWindow(Object window) {
+		if (fSecurityManager != null) {
+			return fSecurityManager.checkTopLevelWindow(window);
+		}
+		return super.checkTopLevelWindow(window);
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkWrite(java.io.FileDescriptor)
+	 */
+	public void checkWrite(FileDescriptor fd) {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkWrite(fd);
+		}
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#checkWrite(java.lang.String)
+	 */
+	public void checkWrite(String file) {
+		if (fSecurityManager != null) {
+			fSecurityManager.checkWrite(file);
+		}
+	}
+
+	/**
+	 * @see java.lang.SecurityManager#getInCheck()
+	 * @deprecated
+	 */
+	public boolean getInCheck() {
+		if (fSecurityManager != null) {
+			return fSecurityManager.getInCheck();
+		}
+		return super.getInCheck();
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#getSecurityContext()
+	 */
+	public Object getSecurityContext() {
+		if (fSecurityManager != null) {
+			return fSecurityManager.getSecurityContext();
+		}
+		return super.getSecurityContext();
+	}
+
+	/* (non-Javadoc)
+	 * @see java.lang.SecurityManager#getThreadGroup()
+	 */
+	public ThreadGroup getThreadGroup() {
+		if (fSecurityManager != null) {
+			fSecurityManager.getThreadGroup();
+		}
+		return super.getThreadGroup();
+	}
+}
author	Paul Webster	2012-04-05 13:14:49 +0000
committer	Paul Webster	2012-04-05 13:14:49 +0000
commit	e853498baecddc18bd367cd1eff02dbcbf732064 (patch)
tree	aaed239c51d19c4b9165dc3a09152309d3e9e8fb /ant/org.eclipse.ant.core/src/org/eclipse/ant/internal/core/AntSecurityManager.java
parent	624dafba89ca9abed4397b97a1fb97b1c1b4e27f (diff)
download	eclipse.platform-e853498baecddc18bd367cd1eff02dbcbf732064.tar.gz eclipse.platform-e853498baecddc18bd367cd1eff02dbcbf732064.tar.xz eclipse.platform-e853498baecddc18bd367cd1eff02dbcbf732064.zip