stan/jdk-24
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

8344949: javax.security.auth.Subject.SecureSet.writeObject does not do a security check anymore

Browse Source 
Reviewed-by: alanb
This commit is contained in:
Sean Mullan 2024-11-26 14:21:01 +00:00
parent f0b72f728d
commit 86d527f987
1 changed files with 0 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
src/java.base/share/classes/javax/security/auth/Subject.java
View File

@ -1418,12 +1418,6 @@ public final class Subject implements java.io.Serializable {
/** /**
* Writes this object out to a stream (i.e., serializes it). * Writes this object out to a stream (i.e., serializes it).
* *
* @serialData If this is a private credential set,
* a security check is performed to ensure that
* the caller has permission to access each credential
* in the set. If the security check passes,
* the set is serialized.
*
* @param oos the {@code ObjectOutputStream} to which data is written * @param oos the {@code ObjectOutputStream} to which data is written
* @throws IOException if an I/O error occurs * @throws IOException if an I/O error occurs
*/ */