RFR: JDK-8291974 PrivateCredentialPermission should not use local variable to enable debugging

Weijun Wang weijun at openjdk.org
Mon Sep 12 16:35:38 UTC 2022

On Wed, 7 Sep 2022 19:49:53 GMT, Mark Powers <mpowers at openjdk.org> wrote:

> https://bugs.openjdk.org/browse/JDK-8291974

Code change looks good to me. Since a `serialVersionUID` is already defined and `testing` is always false, removing it is not a compatibility issue.

However, now that the serialized form is modified (see https://download.java.net/java/early_access/jdk20/docs/api/serialized-form.html#javax.security.auth.PrivateCredentialPermission), I wonder if we need a small CSR.

Assign it a default value, `false`.


PR: https://git.openjdk.org/jdk/pull/10206

More information about the security-dev mailing list