This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/main by this push:
new 7997dadcea Add another warning to the Store interface
7997dadcea is described below
commit 7997dadcea18e9c19a4c6e1254597c7ba84758e6
Author: Mark Thomas <ma...@apache.org>
AuthorDate: Mon Sep 15 16:21:25 2025 +0100
Add another warning to the Store interface
---
java/org/apache/catalina/Store.java | 2 ++
1 file changed, 2 insertions(+)
diff --git a/java/org/apache/catalina/Store.java
b/java/org/apache/catalina/Store.java
index 073600446c..36181c8877 100644
--- a/java/org/apache/catalina/Store.java
+++ b/java/org/apache/catalina/Store.java
@@ -94,6 +94,8 @@ public interface Store {
* <p>
* Implementations should expect, and correctly handle, concurrent calls
to any method but in particular calls to
* {@code #load(String)}, {@code #save(Session)} and {@code
#remove(String)} for the same session.
+ * <p>
+ * The session ID is user provided so stores must treat it as untrusted
data.
*
* @param id Session identifier of the Session to be removed
*
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
