nippy

History

Peter Taoussanis c4251fb39f [BREAKING][#130 ] Serializable: split serializable-whitelist into separate freeze/thaw lists Removed 2x vars: - serializable-whitelist - swap-serializable-whitelist! Added 4x vars: - freeze-serializable-allowlist - thaw-serializable-allowlist - swap-freeze-serializable-allowlist! - swap-thaw-serializable-allowlist! Deprecated 2x JVM properties: - taoensso.nippy.serializable-whitelist-base - taoensso.nippy.serializable-whitelist-add Deprecated 2x ENV vars: - TAOENSSO_NIPPY_SERIALIZABLE_WHITELIST_BASE - TAOENSSO_NIPPY_SERIALIZABLE_WHITELIST_ADD API is otherwise identical. MOTIVATION An API break is unfortunate- but the break here is small, and the benefit significant. By separating the freeze/thaw lists, it becomes possible to safely allow any classes to be frozen - and so effectively make the allowlist a purely thaw-time concern in the common case. This has several advantages including: - No risk of Nippy calls unexpectedly throwing where they didn't before. - The ability to adjust or bypass the thaw allowlist after seeing which class objects have been quarantined. In general: this change eases migration to RCE-safe Nippy from RCE-vulnerable versions. This is especially useful in cases where Nippy is being used as an ~implementation detail for another library/application/service.	2020-09-11 10:38:58 +02:00
..
taoensso/nippy/tests	[BREAKING][#130 ] Serializable: split serializable-whitelist into separate freeze/thaw lists	2020-09-11 10:38:58 +02:00

Peter Taoussanis c4251fb39f [BREAKING][#130 ] Serializable: split *serializable-whitelist* into separate freeze/thaw lists

Removed 2x vars:
  -     *serializable-whitelist*
  - swap-serializable-whitelist!

Added 4x vars:
  -     *freeze-serializable-allowlist*
  -       *thaw-serializable-allowlist*
  - swap-freeze-serializable-allowlist!
  -   swap-thaw-serializable-allowlist!

Deprecated 2x JVM properties:
  - taoensso.nippy.serializable-whitelist-base
  - taoensso.nippy.serializable-whitelist-add

Deprecated 2x ENV vars:
  - TAOENSSO_NIPPY_SERIALIZABLE_WHITELIST_BASE
  - TAOENSSO_NIPPY_SERIALIZABLE_WHITELIST_ADD

API is otherwise identical.

MOTIVATION

  An API break is unfortunate- but the break here is small, and the
  benefit significant.

  By separating the freeze/thaw lists, it becomes possible to safely
  allow *any* classes to be frozen - and so effectively make the
  allowlist a purely thaw-time concern in the common case.

  This has several advantages including:

    - No risk of Nippy calls unexpectedly throwing where they didn't
      before.

    - The ability to adjust or bypass the thaw allowlist *after*
      seeing which class objects have been quarantined.

  In general: this change eases migration to RCE-safe Nippy from
  RCE-vulnerable versions. This is especially useful in cases where
  Nippy is being used as an ~implementation detail for another
  library/application/service.

2020-09-11 10:38:58 +02:00

taoensso/nippy/tests

[BREAKING][#130 ] Serializable: split *serializable-whitelist* into separate freeze/thaw lists

2020-09-11 10:38:58 +02:00