On Sat, 16 Jul 2022 13:46:58 GMT, Weijun Wang <[email protected]> wrote:
>> Add null-checks in all `LoginModule` implementations. It's possible that an >> application calls `logout` after a login failure, where most internal >> variables for principals and credentials are null and removing a null from >> the `Subject`'s principals and credentials sets will trigger a >> `NullPointerException`. > > Weijun Wang has updated the pull request incrementally with one additional > commit since the last revision: > > more comment Thanks. CSR is filed at https://bugs.openjdk.org/browse/JDK-8290119. I've also written a release note at https://bugs.openjdk.org/browse/JDK-8290467. Please take a review. ------------- PR: https://git.openjdk.org/jdk/pull/9348
