IcedTea 2.5.3: Avian, JamVM, Cacao: Implement JVM_FindClassFromCaller OpenJDK 8015256: Better class accessibility
xerxes at zafena.se
Mon Oct 27 08:58:41 UTC 2014
Den 2014-10-20 22:30, Matthias Klose skrev:
> - Did you try to build/run these with
> the IcedTea 2.5.3 update? At least Cacao and JamVM fail.
I received the IcedTea 2.5.3 security update during the week and indeed
all alternative JVM broke.
The OpenJDK source tree revealed the following information:
8015256: Better class accessibility
Summary: Improve protection domain check in forName()
JVM_FindClassFromCaller appears to work quite similar to
JVM_FindClassFromClassLoader with the twist that the protection domain
that belongs to the caller class argument shall be used during the
lookup of the class. But there is no specification or unit-test in
OpenJDK documenting the desired effect, if someone have a specification
or test at hand for how JVM_FindClassFromCaller "security" shall behave
then i would like to see it.
I spent some time yesterday looking into it and have filed patches to
Avian, JamVM and Cacao upstream to make the JVM's compatible with the
Pull request links and commits below:
More information about the distro-pkg-dev