Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8131486

SecureClassLoader key for ProtectionDomain cache also needs to take into account certificates

    Details

    • Subcomponent:
    • Resolved In Build:
      b75
    • Verification:
      Verified

      Backports

        Description

        In the fix for JDK-6826789, the ProtectionDomain cache key was changed from CodeSource to a String to avoid expensive DNS lookups when computing hashcodes for CodeSource URLs. However, the key also needs to take into account the certificates of a CodeSource, otherwise a CodeSource URL with different certificates will resolve to the same ProtectionDomain, which is not correct.

          Attachments

            Issue Links

            backported by

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8136191 SecureClassLoader key for ProtectionDomain cache also needs to take into account certificates

            • P3 - Major loss of function.
            • Resolved
            relates to

            Enhancement - null JDK-6826789 SecureClassLoader should not use CodeSource URLs as HashMap keys

            • P3 - Major loss of function.
            • Closed

              Activity

                People

                • Assignee:
                  mullan Sean Mullan
                  Reporter:
                  mullan Sean Mullan
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  3 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: