This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch 11.0.x
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/11.0.x by this push:
new 6d76d448d3 Add a warning to the Store interface
6d76d448d3 is described below
commit 6d76d448d3a44786c006a7db9e732590217d002f
Author: Mark Thomas <[email protected]>
AuthorDate: Mon Sep 15 16:10:45 2025 +0100
Add a warning to the Store interface
---
java/org/apache/catalina/Store.java | 2 ++
1 file changed, 2 insertions(+)
diff --git a/java/org/apache/catalina/Store.java
b/java/org/apache/catalina/Store.java
index 18a7bb96e3..073600446c 100644
--- a/java/org/apache/catalina/Store.java
+++ b/java/org/apache/catalina/Store.java
@@ -75,6 +75,8 @@ public interface Store {
* <p>
* Implementations should expect, and correctly handle, concurrent calls
to any method but in particular calls to
* {@code #load(String)}, {@code #save(Session)} and {@code
#remove(String)} for the same session.
+ * <p>
+ * The session ID is user provided so stores must treat it as untrusted
data.
*
* @param id Session identifier of the session to load
*
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
