builtin class loaders and security manager

Michał Zegan webczat_200 at poczta.onet.pl
Sat Oct 13 18:55:29 UTC 2018

I seem to be asking many questions lately, although I am actually
interested in some motivations. I was reading code of builtin class
loaders, and from what I understand from that, it seems that classes
loaded by builtin class loader including app class loader, if loaded
from a signed jar, are properly verified, however signers are not
retained in CodeSource. Is this intentional/why?

More information about the jigsaw-dev mailing list