We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
The support for JAR files provided by #942 doesn't include support for signed JARs.
We should port org.apache.harmony.security.utils.JarUtils from Apache Harmony (see here: https://github.com/apache/harmony/blob/java6/classlib/modules/security/src/main/java/common/org/apache/harmony/security/utils/JarUtils.java).
org.apache.harmony.security.utils.JarUtils
There are already tests for signed JARs in:
java.util.jar.JarEntrySuite
java.util.jar.JarFileSuite
java.security.MessageDigest
java.security.cert.Certificate
java.security.cert.CertificateFactory
java.security.CodeSigner
java.security.Timestamp
java.security.cert.X509Certificate
java.security.cert.X509Extension
javax.security.auth.x500.X500Principal
JarUtils
JarVerifier.verifyCertificate
https://github.com/apache/harmony/blob/java6/classlib/modules/archive/src/main/java/java/util/jar/JarVerifier.java#L295-L298
try { Certificate[] signerCertChain = JarUtils.verifySignature( new ByteArrayInputStream(sfBytes), new ByteArrayInputStream(sBlockBytes)); (...)
The text was updated successfully, but these errors were encountered:
java.security
java.rmi
No branches or pull requests
The support for JAR files provided by #942 doesn't include support for signed JARs.
We should port
org.apache.harmony.security.utils.JarUtils
from Apache Harmony (see here: https://github.com/apache/harmony/blob/java6/classlib/modules/security/src/main/java/common/org/apache/harmony/security/utils/JarUtils.java).There are already tests for signed JARs in:
java.util.jar.JarEntrySuite
java.util.jar.JarFileSuite
How to fix this issue:
1. Fix these issues:
java.security.MessageDigest
from Apache Harmony #953java.security.cert.Certificate
from Apache Harmony #954java.security.cert.CertificateFactory
from Apache Harmony #955org.apache.harmony.security.utils.JarUtils
from Apache Harmony #957java.security.CodeSigner
from Apache Harmony #958java.security.Timestamp
from Apache Harmony #959java.security.cert.X509Certificate
from Apache Harmony #960java.security.cert.X509Extension
from Apache Harmony #961javax.security.auth.x500.X500Principal
from Apache Harmony #9622. Use
JarUtils
inJarVerifier.verifyCertificate
:https://github.com/apache/harmony/blob/java6/classlib/modules/archive/src/main/java/java/util/jar/JarVerifier.java#L295-L298
The text was updated successfully, but these errors were encountered: