IcedTea 2.5.3: Avian, JamVM, Cacao: Implement JVM_FindClassFromCaller OpenJDK 8015256: Better class accessibility

Xerxes Rånby xerxes at
Mon Oct 27 08:58:41 UTC 2014

Den 2014-10-20 22:30, Matthias Klose skrev:
>   - Did you try to build/run these with
>     the IcedTea 2.5.3 update? At least Cacao and JamVM fail.

I received the IcedTea 2.5.3 security update during the week and indeed 
all alternative JVM broke.

The OpenJDK source tree revealed the following information:
8015256: Better class accessibility
Summary: Improve protection domain check in forName()

JVM_FindClassFromCaller appears to work quite similar to 
JVM_FindClassFromClassLoader with the twist that the protection domain 
that belongs to the caller class argument shall be used during the 
lookup of the class. But there is no specification or unit-test in 
OpenJDK documenting the desired effect, if someone have a specification 
or test at hand for how JVM_FindClassFromCaller "security" shall behave 
then i would like to see it.

I spent some time yesterday looking into it and have filed patches to 
Avian, JamVM and Cacao upstream to make the JVM's compatible with the 
"security" update.
Pull request links and commits below:





More information about the distro-pkg-dev mailing list