[rfc][icedtea-web] set location for jnlpHreffed jnlp file correctly (rh1072013)

Omair Majid omajid at redhat.com
Mon Mar 10 15:08:39 UTC 2014

* Jiri Vanek <jvanek at redhat.com> [2014-03-10 10:16]:
> On 03/08/2014 04:58 AM, Andrew Azores wrote:
> >No, I don't think there's any way to make applets able to call
> >System.exit() with the custom policies. Not with the way
> >JNLPSecurityManager is currently written. I can't think of a valid
> >reason an applet would need to be able to kill the JVM though... so I
> >don't think it's worth modifying the security manager to allow this.
> >

> Well. I was thinking moreover if it is usable as workaround before
> upstream removes the call.
> But this lead me to idea - why is system.exit not checked against
> policies as all other stuff?  But I can probably answer - because
> there is no such policy?

The exit permission is not granted by default to applets. This is
because all applets that are running in the browser share a single JVM.
If one applet calls System.exit(), all applets will die. This is
something we do not want, so we don't grant that permission.

For javaws, the security manager handles this permission like any other,
allowing sufficiently privileged applications to override it.


PGP Key: 66484681 (http://pgp.mit.edu/)
Fingerprint = F072 555B 0A17 3957 4E95  0056 F286 F14F 6648 4681

More information about the distro-pkg-dev mailing list