Build: #91 was successful Changes by Artem Bilan

Build result summary

Details

Completed
Duration
4 minutes
Labels
None
Agent
bamboo-14.af.pivotal.io
Revision
7759b771168b4adbf4d2e9fdb8c55409fe94a525 7759b771168b4adbf4d2e9fdb8c55409fe94a525
Total tests
737
Successful since
#89 ()

Code commits

Author Commit Message Commit date
Artem Bilan Artem Bilan 7759b771168b4adbf4d2e9fdb8c55409fe94a525 7759b771168b4adbf4d2e9fdb8c55409fe94a525 AMQP-747: Add trustedPackages Option Jackson
JIRA: AMQP-747">https://jira.spring.io/browse/AMQP-747

To have a fix for the CVE-2017-4995 Jackson vulnerability add
`trustedPackages` option to the `Jackson2JsonMessageConverter`,
`DefaultJackson2JavaTypeMapper` and `DefaultClassMapper` and
consult it for the `Class` of the body during deserialization

**Cherry-pick to 1.7.x and 1.6.x**

Check trustedPackages against class names to
avoid static initializer during class load process

Conflicts:
        spring-amqp/src/main/java/org/springframework/amqp/support/converter/DefaultClassMapper.java
        src/reference/asciidoc/amqp.adoc
Resolved.
Artem Bilan Artem Bilan eeccf5715c39abbafc46da1dc5054ee1b53df188 eeccf5715c39abbafc46da1dc5054ee1b53df188 GH-589: Make Jackson2JsonMessageConverter robust
Fixes spring-projects/spring-amqp#589

* Deprecate `setJsonObjectMapper()` in favor of newly introduced ctor
based on the external `ObjectMapper`
* Deprecate `initializeJsonObjectMapper()` in favor of newly introduced
ctor based on the externally configured `ObjectMapper`

JIRA issues

IssueDescriptionStatus
Unknown Issue TypeAMQP-747Could not obtain issue details from JIRA
Unknown Issue TypeGH-589Could not obtain issue details from JIRA