Review request for 7198429: need checked categorization of caller-sensitive methods in the JDK

John Rose john.r.rose at oracle.com
Thu Mar 28 08:54:16 UTC 2013


On Mar 27, 2013, at 10:35 AM, Mandy Chung <mandy.chung at oracle.com> wrote:

> 1. I am working on a fix for 8007035 that proposes to deprecate SecurityManager.checkMemberAccess method as it requires the caller’s frame to be at a stack depth of four, which is fragile and difficult to enforce.

Where you test c=smgr.getClass(), c == SecurityManager.class you should also add
|| c.getMethod("checkSecurityManager", ...).getDeclaringClass() == SecurityManager.class. 

That will accurately detect overloading. 

-- John  (on my iPhone)


More information about the core-libs-dev mailing list