On 06/05/2019 18:31, Arthur Eubanks wrote:
I added a test that set an empty SecurityManager and called
InetAddress.getLoopbackAddress(). It passed, there were no permission
issues.
Then I looked at the code around NetworkInterface.getByInetAddress(),
and I don't see anything related to security managers, either in
NetworkInterface.getByInetAddress() or the native code it calls. There
is also no documentation on permission issues, unlike some of the
other methods in NetworkInterface (e.g.
NetworkInterface.getInetAddresses()). So it looks like there are no
security manager issues here?
My apologies, I was thinking NetworkInterface.getInetAddresses() which
is specified to not leak local address. With
NetworkInterface.getByInetAddress then you've already got a reference to
the InetAddress so it's not an issue.
-Alan.
