HV-1439 Disable AnnotationProxy equals optimization if the security manager is enabled

Apparently, the security check for getInvocationHandler() was not
correctly implemented in JDK 8 < 131.

Author: gsmet

engine/src/main/java/org/hibernate/validator/internal/util/annotationfactory/AnnotationProxy.java

@@ -183,7 +183,9 @@ else if ( m.getDefaultValue() != null ) {
 	}
 
 	private Map<String, Object> getAnnotationValues(Annotation annotation) {
-		if ( Proxy.isProxyClass( annotation.getClass() ) ) {
+		// We only enable this optimization if the security manager is not enabled. Otherwise,
+		// we would have to add every package containing constraints to the security policy.
+		if ( Proxy.isProxyClass( annotation.getClass() ) && System.getSecurityManager() == null ) {
 			InvocationHandler invocationHandler = Proxy.getInvocationHandler( annotation );
 			if ( invocationHandler instanceof AnnotationProxy ) {
 				return ( (AnnotationProxy) invocationHandler ).values;