Always catch SecurityException.

Author: woess

graal-js/src/com.oracle.truffle.js/src/com/oracle/truffle/js/builtins/JavaBuiltins.java

@@ -359,9 +359,8 @@ protected Object extend(Object[] arguments) {
                 types[i] = toHostClass(arguments[i], env);
             }
 
-            JavaAccess.checkAccess(types, getContext());
-
             try {
+                JavaAccess.checkAccess(types, getContext());
                 if (classOverrides != null) {
                     return env.createHostAdapterClassWithStaticOverrides(types, classOverrides);
                 } else {

graal-js/src/com.oracle.truffle.js/src/com/oracle/truffle/js/nodes/function/JSNewNode.java

@@ -247,8 +247,8 @@ private Object extend(Class<?> type, TruffleLanguage.Env env) {
         }
         // Equivalent to Java.extend(type)
         Class<?>[] types = new Class<?>[]{type};
-        JavaAccess.checkAccess(types, context);
         try {
+            JavaAccess.checkAccess(types, context);
             return env.createHostAdapterClass(types);
         } catch (Exception ex) {
             throw Errors.createTypeError(ex.getMessage(), ex, this);

graal-js/src/com.oracle.truffle.js/src/com/oracle/truffle/js/runtime/java/JavaAccess.java

@@ -44,7 +44,6 @@
 
 import com.oracle.truffle.api.CompilerDirectives.TruffleBoundary;
 import com.oracle.truffle.api.TruffleLanguage;
-import com.oracle.truffle.js.runtime.Errors;
 import com.oracle.truffle.js.runtime.JSContext;
 
 /**
@@ -72,7 +71,7 @@ public static boolean isReflectionClass(final Class<?> type) {
 
     public static void checkReflectionAccess(final Class<?> clazz, final boolean isStatic, final boolean allowReflection) {
         if (!allowReflection && isReflectiveCheckNeeded(clazz, isStatic)) {
-            throw Errors.createTypeError("Java reflection not allowed");
+            throw new SecurityException("Java reflection not allowed");
         }
 
         final SecurityManager sm = System.getSecurityManager();