[
https://issues.apache.org/jira/browse/ZOOKEEPER-1362?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15690691#comment-15690691
]
Michael Han commented on ZOOKEEPER-1362:
----------------------------------------
On a side note, there is another motivation for making Ids ACL immutable:
findbug reports mutable public interface as potential security vulnerability
(Malicious code vulnerability warnings) which is reasonable and good to fix.
For now, we temporarily disabled 'Malicious code vulnerability warnings' in
ZOOKEEPER-2628, and we should re-enable this warning once this JIRA is
resolved.
> ZooDefs.Ids ACL lists not immutable
> -----------------------------------
>
> Key: ZOOKEEPER-1362
> URL: https://issues.apache.org/jira/browse/ZOOKEEPER-1362
> Project: ZooKeeper
> Issue Type: Improvement
> Components: java client
> Reporter: Tassos Souris
> Priority: Trivial
>
> In org.apache.zookeeper:
> 1) ZooDefs.Ids.OPEN_ACL_UNSAFE
> 2) ZooDefs.Ids.CREATOR_ALL_ACL
> 3) ZooDefs.Ids.READ_ALL_ACL
> are not immutable lists. Unlikely but the client could alter them.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
