RFR: JDK-8291974 PrivateCredentialPermission should not use local variable to enable debugging

Valerie Peng valeriep at openjdk.org
Mon Sep 19 17:54:57 UTC 2022


On Mon, 19 Sep 2022 17:43:35 GMT, Mark Powers <mpowers at openjdk.org> wrote:

> I wrote a test to deserialize an object created and serialized before the fix. I compare the old object with the current object after the fix. What is important is not the comparison, but that deserialization doesn't throw an exception.

Does both de-serialization pass, i.e. deserialize the new bytes using old release and deserializing the old bytes using new release?

-------------

PR: https://git.openjdk.org/jdk/pull/10206



More information about the security-dev mailing list