Skip to content
体验新版
项目
组织
正在加载...
登录
切换导航
打开侧边栏
openanolis
dragonwell11
提交
2e722c67
D
dragonwell11
项目概览
openanolis
/
dragonwell11
通知
7
Star
2
Fork
0
代码
文件
提交
分支
Tags
贡献者
分支图
Diff
Issue
0
列表
看板
标记
里程碑
合并请求
0
Wiki
0
Wiki
分析
仓库
DevOps
项目成员
Pages
D
dragonwell11
项目概览
项目概览
详情
发布
仓库
仓库
文件
提交
分支
标签
贡献者
分支图
比较
Issue
0
Issue
0
列表
看板
标记
里程碑
合并请求
0
合并请求
0
Pages
分析
分析
仓库分析
DevOps
Wiki
0
Wiki
成员
成员
收起侧边栏
关闭侧边栏
动态
分支图
创建新Issue
提交
Issue看板
体验新版 GitCode,发现更多精彩内容 >>
提交
2e722c67
编写于
8月 09, 2013
作者:
W
weijun
浏览文件
操作
浏览文件
下载
电子邮件补丁
差异文件
8021788: JarInputStream doesn't provide certificates for some file under META-INF
Reviewed-by: chegar, sherman
上级
c1fe73c8
变更
2
隐藏空白更改
内联
并排
Showing
2 changed file
with
80 addition
and
1 deletion
+80
-1
jdk/src/share/classes/java/util/jar/JarVerifier.java
jdk/src/share/classes/java/util/jar/JarVerifier.java
+9
-1
jdk/test/java/util/jar/JarInputStream/ExtraFileInMetaInf.java
...test/java/util/jar/JarInputStream/ExtraFileInMetaInf.java
+71
-0
未找到文件。
jdk/src/share/classes/java/util/jar/JarVerifier.java
浏览文件 @
2e722c67
...
@@ -139,13 +139,21 @@ class JarVerifier {
...
@@ -139,13 +139,21 @@ class JarVerifier {
return
;
return
;
}
}
if
(
uname
.
equals
(
JarFile
.
MANIFEST_NAME
))
{
return
;
}
if
(
SignatureFileVerifier
.
isBlockOrSF
(
uname
))
{
if
(
SignatureFileVerifier
.
isBlockOrSF
(
uname
))
{
/* We parse only DSA, RSA or EC PKCS7 blocks. */
/* We parse only DSA, RSA or EC PKCS7 blocks. */
parsingBlockOrSF
=
true
;
parsingBlockOrSF
=
true
;
baos
.
reset
();
baos
.
reset
();
mev
.
setEntry
(
null
,
je
);
mev
.
setEntry
(
null
,
je
);
return
;
}
}
return
;
// If a META-INF entry is not MF or block or SF, they should
// be normal entries. According to 2 above, no more block or
// SF will appear. Let's doneWithMeta.
}
}
}
}
...
...
jdk/test/java/util/jar/JarInputStream/ExtraFileInMetaInf.java
0 → 100644
浏览文件 @
2e722c67
/*
* Copyright (c) 2013, Oracle and/or its affiliates. All rights reserved.
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
*
* This code is free software; you can redistribute it and/or modify it
* under the terms of the GNU General Public License version 2 only, as
* published by the Free Software Foundation.
*
* This code is distributed in the hope that it will be useful, but WITHOUT
* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
* version 2 for more details (a copy is included in the LICENSE file that
* accompanied this code).
*
* You should have received a copy of the GNU General Public License version
* 2 along with this work; if not, write to the Free Software Foundation,
* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
*
* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
* or visit www.oracle.com if you need additional information or have any
* questions.
*/
/*
* @test
* @bug 8021788
* @summary JarInputStream doesn't provide certificates for some file under META-INF
*/
import
java.util.jar.*
;
import
java.io.*
;
import
java.util.zip.ZipEntry
;
import
java.util.zip.ZipOutputStream
;
public
class
ExtraFileInMetaInf
{
public
static
void
main
(
String
args
[])
throws
Exception
{
// Create a zip file with 2 entries
try
(
ZipOutputStream
zos
=
new
ZipOutputStream
(
new
FileOutputStream
(
"x.jar"
)))
{
zos
.
putNextEntry
(
new
ZipEntry
(
"META-INF/SUB/file"
));
zos
.
write
(
new
byte
[
10
]);
zos
.
putNextEntry
(
new
ZipEntry
(
"x"
));
zos
.
write
(
new
byte
[
10
]);
zos
.
close
();
}
// Sign it
new
File
(
"ks"
).
delete
();
sun
.
security
.
tools
.
keytool
.
Main
.
main
(
(
"-keystore ks -storepass changeit -keypass changeit "
+
"-alias a -dname CN=A -genkeypair"
).
split
(
" "
));
sun
.
security
.
tools
.
jarsigner
.
Main
.
main
(
"-keystore ks -storepass changeit x.jar a"
.
split
(
" "
));
// Check if the entries are signed
try
(
JarInputStream
jis
=
new
JarInputStream
(
new
FileInputStream
(
"x.jar"
)))
{
JarEntry
je
;
while
((
je
=
jis
.
getNextJarEntry
())
!=
null
)
{
String
name
=
je
.
toString
();
if
(
name
.
equals
(
"META-INF/SUB/file"
)
||
name
.
equals
(
"x"
))
{
while
(
jis
.
read
(
new
byte
[
1000
])
>=
0
);
if
(
je
.
getCertificates
()
==
null
)
{
throw
new
Exception
(
name
+
" not signed"
);
}
}
}
}
}
}
编辑
预览
Markdown
is supported
0%
请重试
或
添加新附件
.
添加附件
取消
You are about to add
0
people
to the discussion. Proceed with caution.
先完成此消息的编辑!
取消
想要评论请
注册
或
登录