Hello, I seem to be asking many questions lately, although I am actually interested in some motivations. I was reading code of builtin class loaders, and from what I understand from that, it seems that classes loaded by builtin class loader including app class loader, if loaded from a signed jar, are properly verified, however signers are not retained in CodeSource. Is this intentional/why?
- builtin class loaders and security manager Michał Zegan
- Re: builtin class loaders and security manager Alan Bateman
- Re: builtin class loaders and security manager Michał Zegan
