I'm yet to look at the code. Is it possible to use any callable for
methods? If so, do we have tests to cover those cases (like JSObject
"functions", DynamicMethods etc.)? In particular, sandbox tests to make
sure can't get any more privilege by implementing an interface (for eg.
binding sensitive Java method as function implementing interface method
and making sure it gets SecurityException when interface method is called).
Thanks,
-Sundar
On 1/2/2016 8:31 PM, Attila Szegedi wrote:
Please review JDK-8133299 "Nashorn Java adapters should not early bind to functions" at
<http://cr.openjdk.java.net/~attila/8133299/webrev.jdk9> for
<https://bugs.openjdk.java.net/browse/JDK-8133299>
See implementation notes in
<https://bugs.openjdk.java.net/browse/JDK-8133299?focusedCommentId=13883269&page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#comment-13883269>
Also note that this changeset is based on current tip (rev 1584,
[da397aea8ada]) and is as such independent of the change sets for JDK-8144917
and JDK-8144919 that are still pending review.
Thanks,
Attila.
