[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: question about serialization
|
From: |
Chris Gray |
|
Subject: |
Re: question about serialization |
|
Date: |
Mon, 4 Aug 2003 15:31:09 +0200 |
On Monday 04 August 2003 11:57, Jeroen Frijters wrote:
> Chris Gray wrote:
> > Granting AllPermission to everything loaded by the system
> > class loader is IMHO acceptable, *iff* by system class
> > loader you mean the class loader which
> > loads java.* classes from a trusted location.
>
> This is the "bootstrap class loader" aka "null class loader" (because
> Object.class.getClassLoader() returns null).
Can be, but doesn't have to be: Sun's documentation allows for the
possibility that the bootstrap class loader hands over to a regular instance
of ClassLoader once bootstrapping is complete.
Still, java.lang.Object illustrates the problem nicely: it's not possible to
be playing with ProtectionDomain and Permissions and all that when you
haven't even loaded Object yet. :) So the VM has to improvise something, and
the usual answer is to regard all classes loaded by the bootstrap class loader
as being totally privileged.
Regards
--
Chris Gray /k/ Embedded Java Solutions
Embedded & Mobile Java, OSGi http://www.kiffer.be/k/
address@hidden +32 477 599 703
- Re: question about serialization, (continued)
- Re: question about serialization, Chris Gray, 2003/08/04
- Re: question about serialization, Bryce McKinlay, 2003/08/04
- Re: question about serialization, Chris Gray, 2003/08/04
- Re: question about serialization, Bryce McKinlay, 2003/08/04
- Re: question about serialization, Tom Tromey, 2003/08/04
- Re: question about serialization, Ingo Prötel, 2003/08/05
- Re: question about serialization, Tom Tromey, 2003/08/05
- Re: question about serialization, Mark Wielaard, 2003/08/05
- Re: question about serialization, Chris Gray, 2003/08/05
RE: question about serialization, Jeroen Frijters, 2003/08/04
- Re: question about serialization,
Chris Gray <=