--- a/src/share/classes/java/net/HttpURLConnection.java Thu Sep 23 08:50:17 2010 -0700
+++ b/src/share/classes/java/net/HttpURLConnection.java Thu Sep 23 08:56:38 2010 -0700
@@ -344,6 +344,12 @@ abstract public class HttpURLConnection
for (int i = 0; i < methods.length; i++) {
if (methods[i].equals(method)) {
+ if (method.equals("TRACE")) {
+ SecurityManager s = System.getSecurityManager();
+ if (s != null) {
+ s.checkPermission(new NetPermission("allowHttpTrace"));
+ }
+ }
this.method = method;
return;
}