RFR: 8365400: enhance JFR to emit file and module metadata for class loading
Erik Gahlin
egahlin at openjdk.org
Mon Oct 6 22:50:44 UTC 2025
On Mon, 6 Oct 2025 18:15:51 GMT, Larry Cable <duke at openjdk.org> wrote:
> while existing class loading JFR events exist, none of these provide the path (if available) from which a class is loaded/defined, nor are they easily modified to do so from a compatibility standpoint.
>
> therefore this ER/PR adds a simple JFR event that encapsulates a tuple of class and path that can be enabled in order to provide an audit/debug trail of locations (path, if available) from which a particular class is loaded/defined.
>
> this association can be used for various "applications" such as basic auditing etc
What is the scope of the event? I assume it will not work for all classes. Could more be added, or could the limitation be stated somewhere, e.g. Label("Secure Class File Define")? The event name can still be generic.
-------------
PR Comment: https://git.openjdk.org/jdk/pull/27656#issuecomment-3374538971
More information about the security-dev
mailing list