HV-1439 Disable AnnotationProxy equals optimization if the security m…

…anager is enabled Apparently, the security check for getInvocationHandler() was not correctly implemented in JDK 8 < 131.
hibernate · Aug 3, 2017 · 6caa16d · 6caa16d
1 parent 6be0928
commit 6caa16d
Showing 1 changed file with 3 additions and 1 deletion.
diff --git a/...rc/main/java/org/hibernate/validator/internal/util/annotationfactory/AnnotationProxy.java b/...rc/main/java/org/hibernate/validator/internal/util/annotationfactory/AnnotationProxy.java
@@ -183,7 +183,9 @@ else if ( m.getDefaultValue() != null ) {
 	}
 
 	private Map<String, Object> getAnnotationValues(Annotation annotation) {
-		if ( Proxy.isProxyClass( annotation.getClass() ) ) {
+		// We only enable this optimization if the security manager is not enabled. Otherwise,
+		// we would have to add every package containing constraints to the security policy.
+		if ( Proxy.isProxyClass( annotation.getClass() ) && System.getSecurityManager() == null ) {
 			InvocationHandler invocationHandler = Proxy.getInvocationHandler( annotation );
 			if ( invocationHandler instanceof AnnotationProxy ) {
 				return ( (AnnotationProxy) invocationHandler ).values;