Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: 7.1.0.ER2
Affects Version/s: 7.1.0.DR11
Component/s: Security
Labels:
- callback
- static_analysis

Target Release:

7.1.0.GA

SFDC Cases Counter:
SFDC Cases Links:

Description

Coverity static analysis found, there is couple of *Callback classes, which are mark as Serializable, and contains non-serializable fields.

CredentialCallback
CredentialUpdateCallback
MechanismInformationCallback
SSLCallback
SecurityIdentityCallback
ServerCredentialCallback
TrustedAuthoritiesCallback

Either mark fields as transient or Serializable.

https://scan7.coverity.com/reports.htm#v23632/p11778/fileInstanceId=8490519&defectInstanceId=2123214&mergedDefectId=1377493

Attachments

Issue Links

is cloned by

ELY-959 Coverity static analysis: Serializable *Callback classes containes non-serializable fields

Resolved

is incorporated by

JBEAP-11459 Upgrade WildFly Elytron to 1.1.0.Beta54

Verified

Activity

People

Assignee:: David Lloyd

Reporter:: Martin Choma

Tester:: Martin Choma

QA Contact:: Martin Choma

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 2017/01/25 4:56 AM

Updated:: 2021/10/24 6:26 AM

Resolved:: 2017/06/12 12:09 PM