From 33320ca2017c59a535090827e9840880184c5622 Mon Sep 17 00:00:00 2001
From: Thomas Watson <tjwatson@us.ibm.com>
Date: Thu, 3 Oct 2024 10:44:11 -0500
Subject: [PATCH] Do not expose the ServicePermission to users of URL

An important doPriv was removed which protected callers
of URL from the SerivcePermissin check to get the handler
service.
---
 .../org/eclipse/osgi/internal/url/URLStreamHandlerProxy.java    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bundles/org.eclipse.osgi/container/src/org/eclipse/osgi/internal/url/URLStreamHandlerProxy.java b/bundles/org.eclipse.osgi/container/src/org/eclipse/osgi/internal/url/URLStreamHandlerProxy.java
index 4c145ee3498..f62fac292c4 100644
--- a/bundles/org.eclipse.osgi/container/src/org/eclipse/osgi/internal/url/URLStreamHandlerProxy.java
+++ b/bundles/org.eclipse.osgi/container/src/org/eclipse/osgi/internal/url/URLStreamHandlerProxy.java
@@ -235,7 +235,7 @@ synchronized void dispose() {
 		@Override
 		public synchronized URLStreamHandlerService get() {
 			if (service == null && !disposed) {
-				service = bundleContext.getService(reference);
+				service = URLStreamHandlerFactoryImpl.secureAction.getService(reference, bundleContext);
 			}
 			return service;
 		}