> On 1 May 2023, at 11:57, Ron Pressler <[email protected]> wrote: > [...] > > There’s no need for such code. Modules that need JNI will use JNI. The > application will simply give them permission to do so with > --enable-native-access=MODULE-NAME, as it would also do to allow FFM to use > native libraries. I wonder if you are planning to define a formal grammar for all these command line options defining “integrity policies” as it surely looks to me like… grant MODULE-NAME { AllPermission } grant MODULE-NAME { OpenModulePermission(“module-to-open-name”) } Wouldn’t it be better to reconsider JEP 411 and just make running under security manager the default? — Michal
- JEP draft: Disallow the Dynamic Loading of Agents by Defa... Ron Pressler
- Re: JEP draft: Disallow the Dynamic Loading of Agent... Volker Simonis
- Re: JEP draft: Disallow the Dynamic Loading of A... Eirik Bjørsnøs
- Re: [External] : Re: JEP draft: Disallow the... Ron Pressler
- Re: [External] : Re: JEP draft: Disallow... Eirik Bjørsnøs
- Re: JEP draft: Disallow the Dynamic Loading of A... Ron Pressler
- Re: JEP draft: Disallow the Dynamic Loading ... Alan Bateman
- Re: JEP draft: Disallow the Dynamic Load... Alex Buckley
- Re: JEP draft: Disallow the Dynamic Load... Gregg Wonderly
- Re: JEP draft: Disallow the Dynamic Loading ... Michał Kłeczek
- Re: [External] : Re: JEP draft: Disallow... Ron Pressler
- Re: JEP draft: Disallow the Dynamic Loading of Agent... Dan Heidinga
- Re: [External] : Re: JEP draft: Disallow the Dyn... Ron Pressler
- Re: [External] : Re: JEP draft: Disallow the... Mike Hearn
- Re: [External] : Re: JEP draft: Disallow... Ron Pressler
- Re: [External] : Re: JEP draft: Dis... Alan Bateman
- Re: [External] : Re: JEP draft: Disallow the... Dan Heidinga
- Re: [External] : Re: JEP draft: Disallow... Ron Pressler
