Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8203839

API clarification: versioned jar entry verification in multi-release jar file

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: P4
    • Resolution: Fixed
    • Affects Version/s: 9, 10, 11
    • Fix Version/s: 11
    • Component/s: core-libs
    • Labels:
      None
    • Subcomponent:
    • Introduced In Version:
      9
    • Resolved In Build:
      b18

      Backports

        Description

        The JarFile API specification does not explicitly specify how the versioned jar entry is verified when the signed multi-release jar file is processed. The proposed update is to clarify that the versioned jar entry is verified against its own signature with its own signers when associated to a corresponding base entry.

          Attachments

            Issue Links

              Activity

                People

                Assignee:
                sherman Xueming Shen
                Reporter:
                sherman Xueming Shen
                Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                  Dates

                  Created:
                  Updated:
                  Resolved: