Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Serialization considerations #21222

Open
pshipton opened this issue Feb 27, 2025 · 2 comments
Open

Serialization considerations #21222

pshipton opened this issue Feb 27, 2025 · 2 comments
Labels
comp:vm
Milestone
Release 0.51 (Jav...

Comments

@pshipton
Copy link
Member

pshipton commented Feb 27, 2025
edited
Loading

See https://bugs.openjdk.org/browse/JDK-8302111

All the serialized classes implemented by OpenJ9 should be checked and corrected if necessary.

"
Essentially, deserialization is a form of object construction and should enforce the same data validation and consistency checks as enforced by the constructor(s). Thus, additional checks may be needed when deserializing the objects to ensure that values failing the constructor check are rejected during deserialization as well.
"
@pshipton
Copy link
Member Author

@tajila fyi

@hangshao0
Copy link
Contributor

Checked the OpenJ9 implemented Serializable JCL classes: MethodType, StringBuffer, StringBuilder, Throwable. We should be fine.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
comp:vm
Projects
None yet
Milestone
Release 0.51 (Java 8, 11, 17, 21, 24)...
Development

No branches or pull requests
2 participants
@hangshao0 @pshipton