RFR: JDK-8291974 PrivateCredentialPermission should not use local variable to enable debugging
Valerie Peng
valeriep at openjdk.org
Mon Sep 19 17:54:57 UTC 2022
On Mon, 19 Sep 2022 17:43:35 GMT, Mark Powers <mpowers at openjdk.org> wrote:
> I wrote a test to deserialize an object created and serialized before the fix. I compare the old object with the current object after the fix. What is important is not the comparison, but that deserialization doesn't throw an exception.
Does both de-serialization pass, i.e. deserialize the new bytes using old release and deserializing the old bytes using new release?
-------------
PR: https://git.openjdk.org/jdk/pull/10206
More information about the security-dev
mailing list