Examples of java.lang.management.ManagementPermission

• java.lang.management.ManagementPermission
  The permission which the SecurityManager will check when code that is running with a SecurityManager calls methods defined in the management interface for the Java platform.

  The following table provides a summary description of what the permission allows, and discusses the risks of granting code the permission.

  Permission Target Name	What the Permission Allows	Risks of Allowing this Permission
  control	Ability to control the runtime characteristics of the Java virtual machine, for example, setting the -verbose:gc and -verbose:class flag, setting the threshold of a memory pool, and enabling and disabling the thread contention monitoring support.	This allows an attacker to control the runtime characteristics of the Java virtual machine and cause the system to misbehave.
  monitor	Ability to retrieve runtime information about the Java virtual machine such as thread stack trace, a list of all loaded class names, and input arguments to the Java virtual machine.	This allows malicious code to monitor runtime information and uncover vulnerabilities.

  Programmers do not normally create ManagementPermission objects directly. Instead they are created by the security policy code based on reading the security policy file. @author Mandy Chung @version 1.5, 04/21/06 @since 1.5 @see java.security.BasicPermission @see java.security.Permission @see java.security.Permissions @see java.security.PermissionCollection @see java.lang.SecurityManager

     * @see java.lang.management.ThreadMXBean#getThreadInfo(long[], int)
     */
    public ThreadInfo[] getThreadInfo(long[] ids, int maxDepth) {
        SecurityManager security = System.getSecurityManager();
        if (security != null) {
            security.checkPermission(new ManagementPermission("monitor"));
        }

        // Validate inputs
        for (int i = 0; i < ids.length; i++) {
            if (ids[i] <= 0) {

     * @see java.lang.management.ThreadMXBean#getThreadInfo(long, int)
     */
    public ThreadInfo getThreadInfo(long id, int maxDepth) {
        SecurityManager security = System.getSecurityManager();
        if (security != null) {
            security.checkPermission(new ManagementPermission("monitor"));
        }

        // Validate inputs
        if (id <= 0) {
            throw new IllegalArgumentException(

     * @see java.lang.management.ThreadMXBean#resetPeakThreadCount()
     */
    public void resetPeakThreadCount() {
        SecurityManager security = System.getSecurityManager();
        if (security != null) {
            security.checkPermission(new ManagementPermission("control"));
        }
        this.resetPeakThreadCountImpl();
    }

                    "Thread contention monitoring is not supported on this virtual machine.");
        }

        SecurityManager security = System.getSecurityManager();
        if (security != null) {
            security.checkPermission(new ManagementPermission("control"));
        }
        this.setThreadContentionMonitoringEnabledImpl(enable);
    }

                    "Thread CPU timing is not supported on this virtual machine.");
        }

        SecurityManager security = System.getSecurityManager();
        if (security != null) {
            security.checkPermission(new ManagementPermission("control"));
        }
        this.setThreadCpuTimeEnabledImpl(enable);
    }

     * @see java.lang.management.MemoryPoolMXBean#resetPeakUsage()
     */
    public void resetPeakUsage() {
        SecurityManager security = System.getSecurityManager();
        if (security != null) {
            security.checkPermission(new ManagementPermission("control"));
        }
        this.resetPeakUsageImpl();
    }

            throw new UnsupportedOperationException(Messages.getString("lm.13")); //$NON-NLS-1$
        }

        SecurityManager security = System.getSecurityManager();
        if (security != null) {
            security.checkPermission(new ManagementPermission("control"));
        }

        if (threshold < 0) {
            //lm.15=Collection usage threshold cannot be negative.
            throw new IllegalArgumentException(Messages.getString("lm.15")); //$NON-NLS-1$

            throw new UnsupportedOperationException(Messages.getString("lm.13"));
        }

        SecurityManager security = System.getSecurityManager();
        if (security != null) {
            security.checkPermission(new ManagementPermission("control"));
        }

        if (threshold < 0) {
            //lm.15=Collection usage threshold cannot be negative.
            throw new IllegalArgumentException(Messages.getString("lm.15")); //$NON-NLS-1$

            throw new UnsupportedOperationException(Messages.getString("lm.1A")); //$NON-NLS-1$
    }

    SecurityManager security = System.getSecurityManager();
    if (security != null) {
      security.checkPermission(new ManagementPermission("monitor"));
    }

    return AccessController.doPrivileged(new PrivilegedAction<String>() {
      public String run() {
        return System.getProperty("sun.boot.class.path");

   * @see java.lang.management.RuntimeMXBean#getInputArguments()
   */
  public List<String> getInputArguments() {
    SecurityManager security = System.getSecurityManager();
    if (security != null) {
      security.checkPermission(new ManagementPermission("monitor"));
    }

        // TODO : Retrieve the input args from the VM
        return new ArrayList<String>();
  }