File tomcat-9.0-sle.catalina.policy.patch of Package tomcat

Index: conf/catalina.policy
===================================================================
--- conf/catalina.policy.orig
+++ conf/catalina.policy
@@ -167,6 +167,9 @@ grant {
     permission java.lang.RuntimePermission "accessClassInPackage.org.apache.tomcat";
 
     // Precompiled JSPs need access to these packages.
+    permission java.lang.RuntimePermission "accessClassInPackage.org.apache.jasper";
+    permission java.lang.RuntimePermission "accessClassInPackage.org.apache.jasper.servlet";
+    permission java.lang.RuntimePermission "accessClassInPackage.org.apache.jasper.compiler";
     permission java.lang.RuntimePermission "accessClassInPackage.org.apache.jasper.el";
     permission java.lang.RuntimePermission "accessClassInPackage.org.apache.jasper.runtime";
     permission java.lang.RuntimePermission
@@ -216,6 +219,15 @@ grant codeBase "file:${catalina.home}/we
 };
 
 
+// Additional basic permissions for web applications.
+grant codeBase "file:/usr/share/java/tomcat-servlet-api.jar" {
+	permission java.security.AllPermission;
+};
+
+grant codeBase "file:/usr/share/java/tomcat-el-api.jar" {
+        permission java.security.AllPermission;
+};
+
 // You can assign additional permissions to particular web applications by
 // adding additional "grant" entries here, based on the code base for that
 // application, /WEB-INF/classes/, or /WEB-INF/lib/ jar files.