RFR: 8328874: Class::forName0 should validate the class name length early [v16]
duke
duke at openjdk.org
Thu Sep 11 15:35:18 UTC 2025
On Tue, 9 Sep 2025 01:05:37 GMT, Guanqiang Han <ghan at openjdk.org> wrote:
>> Validate class name length immediately after GetStringUTFLength() in Class.forName0. This prevents potential issues caused by overly long class names before they reach later code that would reject them, throwing ClassNotFoundException early.
>
> Guanqiang Han has updated the pull request incrementally with one additional commit since the last revision:
>
> Update Class.java
>
> Improve error log
@hgqxjj
Your change (at version acc85bd79bb883e68584c4abfa06b4fd12e7b3e9) is now ready to be sponsored by a Committer.
-------------
PR Comment: https://git.openjdk.org/jdk/pull/26802#issuecomment-3281460105
More information about the core-libs-dev
mailing list