jdk-sandbox: jdk/src/share/classes/java/util/jar/JarFile.java@a042f1412a78 (annotated)

2 90ce3da70b43 Initial load duke parents: diff changeset	1	/*
8387 f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	2	* Copyright (c) 1997, 2011, Oracle and/or its affiliates. All rights reserved.
2 90ce3da70b43 Initial load duke parents: diff changeset	3	* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
90ce3da70b43 Initial load duke parents: diff changeset	4	*
90ce3da70b43 Initial load duke parents: diff changeset	5	* This code is free software; you can redistribute it and/or modify it
90ce3da70b43 Initial load duke parents: diff changeset	6	* under the terms of the GNU General Public License version 2 only, as
5506 202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 4152 diff changeset	7	* published by the Free Software Foundation. Oracle designates this
2 90ce3da70b43 Initial load duke parents: diff changeset	8	* particular file as subject to the "Classpath" exception as provided
5506 202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 4152 diff changeset	9	* by Oracle in the LICENSE file that accompanied this code.
2 90ce3da70b43 Initial load duke parents: diff changeset	10	*
90ce3da70b43 Initial load duke parents: diff changeset	11	* This code is distributed in the hope that it will be useful, but WITHOUT
90ce3da70b43 Initial load duke parents: diff changeset	12	* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
90ce3da70b43 Initial load duke parents: diff changeset	13	* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
90ce3da70b43 Initial load duke parents: diff changeset	14	* version 2 for more details (a copy is included in the LICENSE file that
90ce3da70b43 Initial load duke parents: diff changeset	15	* accompanied this code).
90ce3da70b43 Initial load duke parents: diff changeset	16	*
90ce3da70b43 Initial load duke parents: diff changeset	17	* You should have received a copy of the GNU General Public License version
90ce3da70b43 Initial load duke parents: diff changeset	18	* 2 along with this work; if not, write to the Free Software Foundation,
90ce3da70b43 Initial load duke parents: diff changeset	19	* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
90ce3da70b43 Initial load duke parents: diff changeset	20	*
5506 202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 4152 diff changeset	21	* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 4152 diff changeset	22	* or visit www.oracle.com if you need additional information or have any
202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 4152 diff changeset	23	* questions.
2 90ce3da70b43 Initial load duke parents: diff changeset	24	*/
90ce3da70b43 Initial load duke parents: diff changeset	25
90ce3da70b43 Initial load duke parents: diff changeset	26	package java.util.jar;
90ce3da70b43 Initial load duke parents: diff changeset	27
90ce3da70b43 Initial load duke parents: diff changeset	28	import java.io.*;
90ce3da70b43 Initial load duke parents: diff changeset	29	import java.lang.ref.SoftReference;
8387 f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	30	import java.net.URL;
2 90ce3da70b43 Initial load duke parents: diff changeset	31	import java.util.*;
90ce3da70b43 Initial load duke parents: diff changeset	32	import java.util.zip.*;
90ce3da70b43 Initial load duke parents: diff changeset	33	import java.security.CodeSigner;
90ce3da70b43 Initial load duke parents: diff changeset	34	import java.security.cert.Certificate;
90ce3da70b43 Initial load duke parents: diff changeset	35	import java.security.AccessController;
8387 f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	36	import java.security.CodeSource;
16082 a042f1412a78 8000210: Improve JarFile code quality weijun parents: 11274 diff changeset	37	import sun.misc.IOUtils;
2 90ce3da70b43 Initial load duke parents: diff changeset	38	import sun.security.action.GetPropertyAction;
90ce3da70b43 Initial load duke parents: diff changeset	39	import sun.security.util.ManifestEntryVerifier;
90ce3da70b43 Initial load duke parents: diff changeset	40	import sun.misc.SharedSecrets;
90ce3da70b43 Initial load duke parents: diff changeset	41
90ce3da70b43 Initial load duke parents: diff changeset	42	/**
90ce3da70b43 Initial load duke parents: diff changeset	43	* The <code>JarFile</code> class is used to read the contents of a jar file
90ce3da70b43 Initial load duke parents: diff changeset	44	* from any file that can be opened with <code>java.io.RandomAccessFile</code>.
90ce3da70b43 Initial load duke parents: diff changeset	45	* It extends the class <code>java.util.zip.ZipFile</code> with support
90ce3da70b43 Initial load duke parents: diff changeset	46	* for reading an optional <code>Manifest</code> entry. The
90ce3da70b43 Initial load duke parents: diff changeset	47	* <code>Manifest</code> can be used to specify meta-information about the
90ce3da70b43 Initial load duke parents: diff changeset	48	* jar file and its entries.
90ce3da70b43 Initial load duke parents: diff changeset	49	*
90ce3da70b43 Initial load duke parents: diff changeset	50	* <p> Unless otherwise noted, passing a <tt>null</tt> argument to a constructor
90ce3da70b43 Initial load duke parents: diff changeset	51	* or method in this class will cause a {@link NullPointerException} to be
90ce3da70b43 Initial load duke parents: diff changeset	52	* thrown.
90ce3da70b43 Initial load duke parents: diff changeset	53	*
90ce3da70b43 Initial load duke parents: diff changeset	54	* @author David Connelly
90ce3da70b43 Initial load duke parents: diff changeset	55	* @see Manifest
90ce3da70b43 Initial load duke parents: diff changeset	56	* @see java.util.zip.ZipFile
90ce3da70b43 Initial load duke parents: diff changeset	57	* @see java.util.jar.JarEntry
90ce3da70b43 Initial load duke parents: diff changeset	58	* @since 1.2
90ce3da70b43 Initial load duke parents: diff changeset	59	*/
90ce3da70b43 Initial load duke parents: diff changeset	60	public
90ce3da70b43 Initial load duke parents: diff changeset	61	class JarFile extends ZipFile {
90ce3da70b43 Initial load duke parents: diff changeset	62	private SoftReference<Manifest> manRef;
90ce3da70b43 Initial load duke parents: diff changeset	63	private JarEntry manEntry;
90ce3da70b43 Initial load duke parents: diff changeset	64	private JarVerifier jv;
90ce3da70b43 Initial load duke parents: diff changeset	65	private boolean jvInitialized;
90ce3da70b43 Initial load duke parents: diff changeset	66	private boolean verify;
90ce3da70b43 Initial load duke parents: diff changeset	67	private boolean computedHasClassPathAttribute;
90ce3da70b43 Initial load duke parents: diff changeset	68	private boolean hasClassPathAttribute;
90ce3da70b43 Initial load duke parents: diff changeset	69
90ce3da70b43 Initial load duke parents: diff changeset	70	// Set up JavaUtilJarAccess in SharedSecrets
90ce3da70b43 Initial load duke parents: diff changeset	71	static {
90ce3da70b43 Initial load duke parents: diff changeset	72	SharedSecrets.setJavaUtilJarAccess(new JavaUtilJarAccessImpl());
90ce3da70b43 Initial load duke parents: diff changeset	73	}
90ce3da70b43 Initial load duke parents: diff changeset	74
90ce3da70b43 Initial load duke parents: diff changeset	75	/**
90ce3da70b43 Initial load duke parents: diff changeset	76	* The JAR manifest file name.
90ce3da70b43 Initial load duke parents: diff changeset	77	*/
90ce3da70b43 Initial load duke parents: diff changeset	78	public static final String MANIFEST_NAME = "META-INF/MANIFEST.MF";
90ce3da70b43 Initial load duke parents: diff changeset	79
90ce3da70b43 Initial load duke parents: diff changeset	80	/**
90ce3da70b43 Initial load duke parents: diff changeset	81	* Creates a new <code>JarFile</code> to read from the specified
90ce3da70b43 Initial load duke parents: diff changeset	82	* file <code>name</code>. The <code>JarFile</code> will be verified if
90ce3da70b43 Initial load duke parents: diff changeset	83	* it is signed.
90ce3da70b43 Initial load duke parents: diff changeset	84	* @param name the name of the jar file to be opened for reading
90ce3da70b43 Initial load duke parents: diff changeset	85	* @throws IOException if an I/O error has occurred
90ce3da70b43 Initial load duke parents: diff changeset	86	* @throws SecurityException if access to the file is denied
90ce3da70b43 Initial load duke parents: diff changeset	87	* by the SecurityManager
90ce3da70b43 Initial load duke parents: diff changeset	88	*/
90ce3da70b43 Initial load duke parents: diff changeset	89	public JarFile(String name) throws IOException {
90ce3da70b43 Initial load duke parents: diff changeset	90	this(new File(name), true, ZipFile.OPEN_READ);
90ce3da70b43 Initial load duke parents: diff changeset	91	}
90ce3da70b43 Initial load duke parents: diff changeset	92
90ce3da70b43 Initial load duke parents: diff changeset	93	/**
90ce3da70b43 Initial load duke parents: diff changeset	94	* Creates a new <code>JarFile</code> to read from the specified
90ce3da70b43 Initial load duke parents: diff changeset	95	* file <code>name</code>.
90ce3da70b43 Initial load duke parents: diff changeset	96	* @param name the name of the jar file to be opened for reading
90ce3da70b43 Initial load duke parents: diff changeset	97	* @param verify whether or not to verify the jar file if
90ce3da70b43 Initial load duke parents: diff changeset	98	* it is signed.
90ce3da70b43 Initial load duke parents: diff changeset	99	* @throws IOException if an I/O error has occurred
90ce3da70b43 Initial load duke parents: diff changeset	100	* @throws SecurityException if access to the file is denied
90ce3da70b43 Initial load duke parents: diff changeset	101	* by the SecurityManager
90ce3da70b43 Initial load duke parents: diff changeset	102	*/
90ce3da70b43 Initial load duke parents: diff changeset	103	public JarFile(String name, boolean verify) throws IOException {
90ce3da70b43 Initial load duke parents: diff changeset	104	this(new File(name), verify, ZipFile.OPEN_READ);
90ce3da70b43 Initial load duke parents: diff changeset	105	}
90ce3da70b43 Initial load duke parents: diff changeset	106
90ce3da70b43 Initial load duke parents: diff changeset	107	/**
90ce3da70b43 Initial load duke parents: diff changeset	108	* Creates a new <code>JarFile</code> to read from the specified
90ce3da70b43 Initial load duke parents: diff changeset	109	* <code>File</code> object. The <code>JarFile</code> will be verified if
90ce3da70b43 Initial load duke parents: diff changeset	110	* it is signed.
90ce3da70b43 Initial load duke parents: diff changeset	111	* @param file the jar file to be opened for reading
90ce3da70b43 Initial load duke parents: diff changeset	112	* @throws IOException if an I/O error has occurred
90ce3da70b43 Initial load duke parents: diff changeset	113	* @throws SecurityException if access to the file is denied
90ce3da70b43 Initial load duke parents: diff changeset	114	* by the SecurityManager
90ce3da70b43 Initial load duke parents: diff changeset	115	*/
90ce3da70b43 Initial load duke parents: diff changeset	116	public JarFile(File file) throws IOException {
90ce3da70b43 Initial load duke parents: diff changeset	117	this(file, true, ZipFile.OPEN_READ);
90ce3da70b43 Initial load duke parents: diff changeset	118	}
90ce3da70b43 Initial load duke parents: diff changeset	119
90ce3da70b43 Initial load duke parents: diff changeset	120
90ce3da70b43 Initial load duke parents: diff changeset	121	/**
90ce3da70b43 Initial load duke parents: diff changeset	122	* Creates a new <code>JarFile</code> to read from the specified
90ce3da70b43 Initial load duke parents: diff changeset	123	* <code>File</code> object.
90ce3da70b43 Initial load duke parents: diff changeset	124	* @param file the jar file to be opened for reading
90ce3da70b43 Initial load duke parents: diff changeset	125	* @param verify whether or not to verify the jar file if
90ce3da70b43 Initial load duke parents: diff changeset	126	* it is signed.
90ce3da70b43 Initial load duke parents: diff changeset	127	* @throws IOException if an I/O error has occurred
90ce3da70b43 Initial load duke parents: diff changeset	128	* @throws SecurityException if access to the file is denied
90ce3da70b43 Initial load duke parents: diff changeset	129	* by the SecurityManager.
90ce3da70b43 Initial load duke parents: diff changeset	130	*/
90ce3da70b43 Initial load duke parents: diff changeset	131	public JarFile(File file, boolean verify) throws IOException {
90ce3da70b43 Initial load duke parents: diff changeset	132	this(file, verify, ZipFile.OPEN_READ);
90ce3da70b43 Initial load duke parents: diff changeset	133	}
90ce3da70b43 Initial load duke parents: diff changeset	134
90ce3da70b43 Initial load duke parents: diff changeset	135
90ce3da70b43 Initial load duke parents: diff changeset	136	/**
90ce3da70b43 Initial load duke parents: diff changeset	137	* Creates a new <code>JarFile</code> to read from the specified
90ce3da70b43 Initial load duke parents: diff changeset	138	* <code>File</code> object in the specified mode. The mode argument
90ce3da70b43 Initial load duke parents: diff changeset	139	* must be either <tt>OPEN_READ</tt> or <tt>OPEN_READ \| OPEN_DELETE</tt>.
90ce3da70b43 Initial load duke parents: diff changeset	140	*
90ce3da70b43 Initial load duke parents: diff changeset	141	* @param file the jar file to be opened for reading
90ce3da70b43 Initial load duke parents: diff changeset	142	* @param verify whether or not to verify the jar file if
90ce3da70b43 Initial load duke parents: diff changeset	143	* it is signed.
90ce3da70b43 Initial load duke parents: diff changeset	144	* @param mode the mode in which the file is to be opened
90ce3da70b43 Initial load duke parents: diff changeset	145	* @throws IOException if an I/O error has occurred
90ce3da70b43 Initial load duke parents: diff changeset	146	* @throws IllegalArgumentException
90ce3da70b43 Initial load duke parents: diff changeset	147	* if the <tt>mode</tt> argument is invalid
90ce3da70b43 Initial load duke parents: diff changeset	148	* @throws SecurityException if access to the file is denied
90ce3da70b43 Initial load duke parents: diff changeset	149	* by the SecurityManager
90ce3da70b43 Initial load duke parents: diff changeset	150	* @since 1.3
90ce3da70b43 Initial load duke parents: diff changeset	151	*/
90ce3da70b43 Initial load duke parents: diff changeset	152	public JarFile(File file, boolean verify, int mode) throws IOException {
90ce3da70b43 Initial load duke parents: diff changeset	153	super(file, mode);
90ce3da70b43 Initial load duke parents: diff changeset	154	this.verify = verify;
90ce3da70b43 Initial load duke parents: diff changeset	155	}
90ce3da70b43 Initial load duke parents: diff changeset	156
90ce3da70b43 Initial load duke parents: diff changeset	157	/**
90ce3da70b43 Initial load duke parents: diff changeset	158	* Returns the jar file manifest, or <code>null</code> if none.
90ce3da70b43 Initial load duke parents: diff changeset	159	*
90ce3da70b43 Initial load duke parents: diff changeset	160	* @return the jar file manifest, or <code>null</code> if none
90ce3da70b43 Initial load duke parents: diff changeset	161	*
90ce3da70b43 Initial load duke parents: diff changeset	162	* @throws IllegalStateException
90ce3da70b43 Initial load duke parents: diff changeset	163	* may be thrown if the jar file has been closed
90ce3da70b43 Initial load duke parents: diff changeset	164	*/
90ce3da70b43 Initial load duke parents: diff changeset	165	public Manifest getManifest() throws IOException {
90ce3da70b43 Initial load duke parents: diff changeset	166	return getManifestFromReference();
90ce3da70b43 Initial load duke parents: diff changeset	167	}
90ce3da70b43 Initial load duke parents: diff changeset	168
90ce3da70b43 Initial load duke parents: diff changeset	169	private Manifest getManifestFromReference() throws IOException {
90ce3da70b43 Initial load duke parents: diff changeset	170	Manifest man = manRef != null ? manRef.get() : null;
90ce3da70b43 Initial load duke parents: diff changeset	171
90ce3da70b43 Initial load duke parents: diff changeset	172	if (man == null) {
90ce3da70b43 Initial load duke parents: diff changeset	173
90ce3da70b43 Initial load duke parents: diff changeset	174	JarEntry manEntry = getManEntry();
90ce3da70b43 Initial load duke parents: diff changeset	175
90ce3da70b43 Initial load duke parents: diff changeset	176	// If found then load the manifest
90ce3da70b43 Initial load duke parents: diff changeset	177	if (manEntry != null) {
90ce3da70b43 Initial load duke parents: diff changeset	178	if (verify) {
90ce3da70b43 Initial load duke parents: diff changeset	179	byte[] b = getBytes(manEntry);
90ce3da70b43 Initial load duke parents: diff changeset	180	man = new Manifest(new ByteArrayInputStream(b));
90ce3da70b43 Initial load duke parents: diff changeset	181	if (!jvInitialized) {
9365 469cd39a25de 7040803: regression: bugster fail to start igor parents: 9248 diff changeset	182	jv = new JarVerifier(b);
2 90ce3da70b43 Initial load duke parents: diff changeset	183	}
90ce3da70b43 Initial load duke parents: diff changeset	184	} else {
90ce3da70b43 Initial load duke parents: diff changeset	185	man = new Manifest(super.getInputStream(manEntry));
90ce3da70b43 Initial load duke parents: diff changeset	186	}
11274 7e7196757acd 7117249: fix warnings in java.util.jar, .logging, .prefs, .zip smarks parents: 9365 diff changeset	187	manRef = new SoftReference<>(man);
2 90ce3da70b43 Initial load duke parents: diff changeset	188	}
90ce3da70b43 Initial load duke parents: diff changeset	189	}
90ce3da70b43 Initial load duke parents: diff changeset	190	return man;
90ce3da70b43 Initial load duke parents: diff changeset	191	}
90ce3da70b43 Initial load duke parents: diff changeset	192
90ce3da70b43 Initial load duke parents: diff changeset	193	private native String[] getMetaInfEntryNames();
90ce3da70b43 Initial load duke parents: diff changeset	194
90ce3da70b43 Initial load duke parents: diff changeset	195	/**
90ce3da70b43 Initial load duke parents: diff changeset	196	* Returns the <code>JarEntry</code> for the given entry name or
90ce3da70b43 Initial load duke parents: diff changeset	197	* <code>null</code> if not found.
90ce3da70b43 Initial load duke parents: diff changeset	198	*
90ce3da70b43 Initial load duke parents: diff changeset	199	* @param name the jar file entry name
90ce3da70b43 Initial load duke parents: diff changeset	200	* @return the <code>JarEntry</code> for the given entry name or
90ce3da70b43 Initial load duke parents: diff changeset	201	* <code>null</code> if not found.
90ce3da70b43 Initial load duke parents: diff changeset	202	*
90ce3da70b43 Initial load duke parents: diff changeset	203	* @throws IllegalStateException
90ce3da70b43 Initial load duke parents: diff changeset	204	* may be thrown if the jar file has been closed
90ce3da70b43 Initial load duke parents: diff changeset	205	*
90ce3da70b43 Initial load duke parents: diff changeset	206	* @see java.util.jar.JarEntry
90ce3da70b43 Initial load duke parents: diff changeset	207	*/
90ce3da70b43 Initial load duke parents: diff changeset	208	public JarEntry getJarEntry(String name) {
90ce3da70b43 Initial load duke parents: diff changeset	209	return (JarEntry)getEntry(name);
90ce3da70b43 Initial load duke parents: diff changeset	210	}
90ce3da70b43 Initial load duke parents: diff changeset	211
90ce3da70b43 Initial load duke parents: diff changeset	212	/**
90ce3da70b43 Initial load duke parents: diff changeset	213	* Returns the <code>ZipEntry</code> for the given entry name or
90ce3da70b43 Initial load duke parents: diff changeset	214	* <code>null</code> if not found.
90ce3da70b43 Initial load duke parents: diff changeset	215	*
90ce3da70b43 Initial load duke parents: diff changeset	216	* @param name the jar file entry name
90ce3da70b43 Initial load duke parents: diff changeset	217	* @return the <code>ZipEntry</code> for the given entry name or
90ce3da70b43 Initial load duke parents: diff changeset	218	* <code>null</code> if not found
90ce3da70b43 Initial load duke parents: diff changeset	219	*
90ce3da70b43 Initial load duke parents: diff changeset	220	* @throws IllegalStateException
90ce3da70b43 Initial load duke parents: diff changeset	221	* may be thrown if the jar file has been closed
90ce3da70b43 Initial load duke parents: diff changeset	222	*
90ce3da70b43 Initial load duke parents: diff changeset	223	* @see java.util.zip.ZipEntry
90ce3da70b43 Initial load duke parents: diff changeset	224	*/
90ce3da70b43 Initial load duke parents: diff changeset	225	public ZipEntry getEntry(String name) {
90ce3da70b43 Initial load duke parents: diff changeset	226	ZipEntry ze = super.getEntry(name);
90ce3da70b43 Initial load duke parents: diff changeset	227	if (ze != null) {
90ce3da70b43 Initial load duke parents: diff changeset	228	return new JarFileEntry(ze);
90ce3da70b43 Initial load duke parents: diff changeset	229	}
90ce3da70b43 Initial load duke parents: diff changeset	230	return null;
90ce3da70b43 Initial load duke parents: diff changeset	231	}
90ce3da70b43 Initial load duke parents: diff changeset	232
90ce3da70b43 Initial load duke parents: diff changeset	233	/**
90ce3da70b43 Initial load duke parents: diff changeset	234	* Returns an enumeration of the zip file entries.
90ce3da70b43 Initial load duke parents: diff changeset	235	*/
90ce3da70b43 Initial load duke parents: diff changeset	236	public Enumeration<JarEntry> entries() {
11274 7e7196757acd 7117249: fix warnings in java.util.jar, .logging, .prefs, .zip smarks parents: 9365 diff changeset	237	final Enumeration<? extends ZipEntry> enum_ = super.entries();
2 90ce3da70b43 Initial load duke parents: diff changeset	238	return new Enumeration<JarEntry>() {
90ce3da70b43 Initial load duke parents: diff changeset	239	public boolean hasMoreElements() {
90ce3da70b43 Initial load duke parents: diff changeset	240	return enum_.hasMoreElements();
90ce3da70b43 Initial load duke parents: diff changeset	241	}
90ce3da70b43 Initial load duke parents: diff changeset	242	public JarFileEntry nextElement() {
11274 7e7196757acd 7117249: fix warnings in java.util.jar, .logging, .prefs, .zip smarks parents: 9365 diff changeset	243	ZipEntry ze = enum_.nextElement();
2 90ce3da70b43 Initial load duke parents: diff changeset	244	return new JarFileEntry(ze);
90ce3da70b43 Initial load duke parents: diff changeset	245	}
90ce3da70b43 Initial load duke parents: diff changeset	246	};
90ce3da70b43 Initial load duke parents: diff changeset	247	}
90ce3da70b43 Initial load duke parents: diff changeset	248
90ce3da70b43 Initial load duke parents: diff changeset	249	private class JarFileEntry extends JarEntry {
90ce3da70b43 Initial load duke parents: diff changeset	250	JarFileEntry(ZipEntry ze) {
90ce3da70b43 Initial load duke parents: diff changeset	251	super(ze);
90ce3da70b43 Initial load duke parents: diff changeset	252	}
90ce3da70b43 Initial load duke parents: diff changeset	253	public Attributes getAttributes() throws IOException {
90ce3da70b43 Initial load duke parents: diff changeset	254	Manifest man = JarFile.this.getManifest();
90ce3da70b43 Initial load duke parents: diff changeset	255	if (man != null) {
90ce3da70b43 Initial load duke parents: diff changeset	256	return man.getAttributes(getName());
90ce3da70b43 Initial load duke parents: diff changeset	257	} else {
90ce3da70b43 Initial load duke parents: diff changeset	258	return null;
90ce3da70b43 Initial load duke parents: diff changeset	259	}
90ce3da70b43 Initial load duke parents: diff changeset	260	}
90ce3da70b43 Initial load duke parents: diff changeset	261	public Certificate[] getCertificates() {
90ce3da70b43 Initial load duke parents: diff changeset	262	try {
90ce3da70b43 Initial load duke parents: diff changeset	263	maybeInstantiateVerifier();
90ce3da70b43 Initial load duke parents: diff changeset	264	} catch (IOException e) {
90ce3da70b43 Initial load duke parents: diff changeset	265	throw new RuntimeException(e);
90ce3da70b43 Initial load duke parents: diff changeset	266	}
90ce3da70b43 Initial load duke parents: diff changeset	267	if (certs == null && jv != null) {
8387 f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	268	certs = jv.getCerts(JarFile.this, this);
2 90ce3da70b43 Initial load duke parents: diff changeset	269	}
90ce3da70b43 Initial load duke parents: diff changeset	270	return certs == null ? null : certs.clone();
90ce3da70b43 Initial load duke parents: diff changeset	271	}
90ce3da70b43 Initial load duke parents: diff changeset	272	public CodeSigner[] getCodeSigners() {
90ce3da70b43 Initial load duke parents: diff changeset	273	try {
90ce3da70b43 Initial load duke parents: diff changeset	274	maybeInstantiateVerifier();
90ce3da70b43 Initial load duke parents: diff changeset	275	} catch (IOException e) {
90ce3da70b43 Initial load duke parents: diff changeset	276	throw new RuntimeException(e);
90ce3da70b43 Initial load duke parents: diff changeset	277	}
90ce3da70b43 Initial load duke parents: diff changeset	278	if (signers == null && jv != null) {
8387 f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	279	signers = jv.getCodeSigners(JarFile.this, this);
2 90ce3da70b43 Initial load duke parents: diff changeset	280	}
90ce3da70b43 Initial load duke parents: diff changeset	281	return signers == null ? null : signers.clone();
90ce3da70b43 Initial load duke parents: diff changeset	282	}
90ce3da70b43 Initial load duke parents: diff changeset	283	}
90ce3da70b43 Initial load duke parents: diff changeset	284
90ce3da70b43 Initial load duke parents: diff changeset	285	/*
90ce3da70b43 Initial load duke parents: diff changeset	286	* Ensures that the JarVerifier has been created if one is
90ce3da70b43 Initial load duke parents: diff changeset	287	* necessary (i.e., the jar appears to be signed.) This is done as
90ce3da70b43 Initial load duke parents: diff changeset	288	* a quick check to avoid processing of the manifest for unsigned
90ce3da70b43 Initial load duke parents: diff changeset	289	* jars.
90ce3da70b43 Initial load duke parents: diff changeset	290	*/
90ce3da70b43 Initial load duke parents: diff changeset	291	private void maybeInstantiateVerifier() throws IOException {
90ce3da70b43 Initial load duke parents: diff changeset	292	if (jv != null) {
90ce3da70b43 Initial load duke parents: diff changeset	293	return;
90ce3da70b43 Initial load duke parents: diff changeset	294	}
90ce3da70b43 Initial load duke parents: diff changeset	295
90ce3da70b43 Initial load duke parents: diff changeset	296	if (verify) {
90ce3da70b43 Initial load duke parents: diff changeset	297	String[] names = getMetaInfEntryNames();
90ce3da70b43 Initial load duke parents: diff changeset	298	if (names != null) {
90ce3da70b43 Initial load duke parents: diff changeset	299	for (int i = 0; i < names.length; i++) {
90ce3da70b43 Initial load duke parents: diff changeset	300	String name = names[i].toUpperCase(Locale.ENGLISH);
9365 469cd39a25de 7040803: regression: bugster fail to start igor parents: 9248 diff changeset	301	if (name.endsWith(".DSA") \|\|
469cd39a25de 7040803: regression: bugster fail to start igor parents: 9248 diff changeset	302	name.endsWith(".RSA") \|\|
469cd39a25de 7040803: regression: bugster fail to start igor parents: 9248 diff changeset	303	name.endsWith(".EC") \|\|
469cd39a25de 7040803: regression: bugster fail to start igor parents: 9248 diff changeset	304	name.endsWith(".SF")) {
2 90ce3da70b43 Initial load duke parents: diff changeset	305	// Assume since we found a signature-related file
90ce3da70b43 Initial load duke parents: diff changeset	306	// that the jar is signed and that we therefore
90ce3da70b43 Initial load duke parents: diff changeset	307	// need a JarVerifier and Manifest
90ce3da70b43 Initial load duke parents: diff changeset	308	getManifest();
90ce3da70b43 Initial load duke parents: diff changeset	309	return;
90ce3da70b43 Initial load duke parents: diff changeset	310	}
90ce3da70b43 Initial load duke parents: diff changeset	311	}
90ce3da70b43 Initial load duke parents: diff changeset	312	}
90ce3da70b43 Initial load duke parents: diff changeset	313	// No signature-related files; don't instantiate a
90ce3da70b43 Initial load duke parents: diff changeset	314	// verifier
90ce3da70b43 Initial load duke parents: diff changeset	315	verify = false;
90ce3da70b43 Initial load duke parents: diff changeset	316	}
90ce3da70b43 Initial load duke parents: diff changeset	317	}
90ce3da70b43 Initial load duke parents: diff changeset	318
90ce3da70b43 Initial load duke parents: diff changeset	319
90ce3da70b43 Initial load duke parents: diff changeset	320	/*
90ce3da70b43 Initial load duke parents: diff changeset	321	* Initializes the verifier object by reading all the manifest
90ce3da70b43 Initial load duke parents: diff changeset	322	* entries and passing them to the verifier.
90ce3da70b43 Initial load duke parents: diff changeset	323	*/
90ce3da70b43 Initial load duke parents: diff changeset	324	private void initializeVerifier() {
90ce3da70b43 Initial load duke parents: diff changeset	325	ManifestEntryVerifier mev = null;
90ce3da70b43 Initial load duke parents: diff changeset	326
90ce3da70b43 Initial load duke parents: diff changeset	327	// Verify "META-INF/" entries...
90ce3da70b43 Initial load duke parents: diff changeset	328	try {
90ce3da70b43 Initial load duke parents: diff changeset	329	String[] names = getMetaInfEntryNames();
90ce3da70b43 Initial load duke parents: diff changeset	330	if (names != null) {
90ce3da70b43 Initial load duke parents: diff changeset	331	for (int i = 0; i < names.length; i++) {
90ce3da70b43 Initial load duke parents: diff changeset	332	JarEntry e = getJarEntry(names[i]);
16082 a042f1412a78 8000210: Improve JarFile code quality weijun parents: 11274 diff changeset	333	if (e == null) {
a042f1412a78 8000210: Improve JarFile code quality weijun parents: 11274 diff changeset	334	throw new JarException("corrupted jar file");
a042f1412a78 8000210: Improve JarFile code quality weijun parents: 11274 diff changeset	335	}
9365 469cd39a25de 7040803: regression: bugster fail to start igor parents: 9248 diff changeset	336	if (!e.isDirectory()) {
2 90ce3da70b43 Initial load duke parents: diff changeset	337	if (mev == null) {
90ce3da70b43 Initial load duke parents: diff changeset	338	mev = new ManifestEntryVerifier
90ce3da70b43 Initial load duke parents: diff changeset	339	(getManifestFromReference());
90ce3da70b43 Initial load duke parents: diff changeset	340	}
9365 469cd39a25de 7040803: regression: bugster fail to start igor parents: 9248 diff changeset	341	byte[] b = getBytes(e);
469cd39a25de 7040803: regression: bugster fail to start igor parents: 9248 diff changeset	342	if (b != null && b.length > 0) {
469cd39a25de 7040803: regression: bugster fail to start igor parents: 9248 diff changeset	343	jv.beginEntry(e, mev);
469cd39a25de 7040803: regression: bugster fail to start igor parents: 9248 diff changeset	344	jv.update(b.length, b, 0, b.length, mev);
469cd39a25de 7040803: regression: bugster fail to start igor parents: 9248 diff changeset	345	jv.update(-1, null, 0, 0, mev);
469cd39a25de 7040803: regression: bugster fail to start igor parents: 9248 diff changeset	346	}
2 90ce3da70b43 Initial load duke parents: diff changeset	347	}
90ce3da70b43 Initial load duke parents: diff changeset	348	}
90ce3da70b43 Initial load duke parents: diff changeset	349	}
90ce3da70b43 Initial load duke parents: diff changeset	350	} catch (IOException ex) {
90ce3da70b43 Initial load duke parents: diff changeset	351	// if we had an error parsing any blocks, just
90ce3da70b43 Initial load duke parents: diff changeset	352	// treat the jar file as being unsigned
90ce3da70b43 Initial load duke parents: diff changeset	353	jv = null;
90ce3da70b43 Initial load duke parents: diff changeset	354	verify = false;
16082 a042f1412a78 8000210: Improve JarFile code quality weijun parents: 11274 diff changeset	355	if (JarVerifier.debug != null) {
a042f1412a78 8000210: Improve JarFile code quality weijun parents: 11274 diff changeset	356	JarVerifier.debug.println("jarfile parsing error!");
a042f1412a78 8000210: Improve JarFile code quality weijun parents: 11274 diff changeset	357	ex.printStackTrace();
a042f1412a78 8000210: Improve JarFile code quality weijun parents: 11274 diff changeset	358	}
2 90ce3da70b43 Initial load duke parents: diff changeset	359	}
90ce3da70b43 Initial load duke parents: diff changeset	360
90ce3da70b43 Initial load duke parents: diff changeset	361	// if after initializing the verifier we have nothing
90ce3da70b43 Initial load duke parents: diff changeset	362	// signed, we null it out.
90ce3da70b43 Initial load duke parents: diff changeset	363
90ce3da70b43 Initial load duke parents: diff changeset	364	if (jv != null) {
90ce3da70b43 Initial load duke parents: diff changeset	365
90ce3da70b43 Initial load duke parents: diff changeset	366	jv.doneWithMeta();
90ce3da70b43 Initial load duke parents: diff changeset	367	if (JarVerifier.debug != null) {
90ce3da70b43 Initial load duke parents: diff changeset	368	JarVerifier.debug.println("done with meta!");
90ce3da70b43 Initial load duke parents: diff changeset	369	}
90ce3da70b43 Initial load duke parents: diff changeset	370
90ce3da70b43 Initial load duke parents: diff changeset	371	if (jv.nothingToVerify()) {
90ce3da70b43 Initial load duke parents: diff changeset	372	if (JarVerifier.debug != null) {
90ce3da70b43 Initial load duke parents: diff changeset	373	JarVerifier.debug.println("nothing to verify!");
90ce3da70b43 Initial load duke parents: diff changeset	374	}
90ce3da70b43 Initial load duke parents: diff changeset	375	jv = null;
90ce3da70b43 Initial load duke parents: diff changeset	376	verify = false;
90ce3da70b43 Initial load duke parents: diff changeset	377	}
90ce3da70b43 Initial load duke parents: diff changeset	378	}
90ce3da70b43 Initial load duke parents: diff changeset	379	}
90ce3da70b43 Initial load duke parents: diff changeset	380
90ce3da70b43 Initial load duke parents: diff changeset	381	/*
90ce3da70b43 Initial load duke parents: diff changeset	382	* Reads all the bytes for a given entry. Used to process the
90ce3da70b43 Initial load duke parents: diff changeset	383	* META-INF files.
90ce3da70b43 Initial load duke parents: diff changeset	384	*/
90ce3da70b43 Initial load duke parents: diff changeset	385	private byte[] getBytes(ZipEntry ze) throws IOException {
16082 a042f1412a78 8000210: Improve JarFile code quality weijun parents: 11274 diff changeset	386	try (InputStream is = super.getInputStream(ze)) {
a042f1412a78 8000210: Improve JarFile code quality weijun parents: 11274 diff changeset	387	return IOUtils.readFully(is, (int)ze.getSize(), true);
8553 46c2babb1e44 7021582: convert jar/zip code and tests to use try-with-resources smarks parents: 8387 diff changeset	388	}
2 90ce3da70b43 Initial load duke parents: diff changeset	389	}
90ce3da70b43 Initial load duke parents: diff changeset	390
90ce3da70b43 Initial load duke parents: diff changeset	391	/**
90ce3da70b43 Initial load duke parents: diff changeset	392	* Returns an input stream for reading the contents of the specified
90ce3da70b43 Initial load duke parents: diff changeset	393	* zip file entry.
90ce3da70b43 Initial load duke parents: diff changeset	394	* @param ze the zip file entry
90ce3da70b43 Initial load duke parents: diff changeset	395	* @return an input stream for reading the contents of the specified
90ce3da70b43 Initial load duke parents: diff changeset	396	* zip file entry
90ce3da70b43 Initial load duke parents: diff changeset	397	* @throws ZipException if a zip file format error has occurred
90ce3da70b43 Initial load duke parents: diff changeset	398	* @throws IOException if an I/O error has occurred
90ce3da70b43 Initial load duke parents: diff changeset	399	* @throws SecurityException if any of the jar file entries
90ce3da70b43 Initial load duke parents: diff changeset	400	* are incorrectly signed.
90ce3da70b43 Initial load duke parents: diff changeset	401	* @throws IllegalStateException
90ce3da70b43 Initial load duke parents: diff changeset	402	* may be thrown if the jar file has been closed
90ce3da70b43 Initial load duke parents: diff changeset	403	*/
90ce3da70b43 Initial load duke parents: diff changeset	404	public synchronized InputStream getInputStream(ZipEntry ze)
90ce3da70b43 Initial load duke parents: diff changeset	405	throws IOException
90ce3da70b43 Initial load duke parents: diff changeset	406	{
90ce3da70b43 Initial load duke parents: diff changeset	407	maybeInstantiateVerifier();
90ce3da70b43 Initial load duke parents: diff changeset	408	if (jv == null) {
90ce3da70b43 Initial load duke parents: diff changeset	409	return super.getInputStream(ze);
90ce3da70b43 Initial load duke parents: diff changeset	410	}
90ce3da70b43 Initial load duke parents: diff changeset	411	if (!jvInitialized) {
90ce3da70b43 Initial load duke parents: diff changeset	412	initializeVerifier();
90ce3da70b43 Initial load duke parents: diff changeset	413	jvInitialized = true;
90ce3da70b43 Initial load duke parents: diff changeset	414	// could be set to null after a call to
90ce3da70b43 Initial load duke parents: diff changeset	415	// initializeVerifier if we have nothing to
90ce3da70b43 Initial load duke parents: diff changeset	416	// verify
90ce3da70b43 Initial load duke parents: diff changeset	417	if (jv == null)
90ce3da70b43 Initial load duke parents: diff changeset	418	return super.getInputStream(ze);
90ce3da70b43 Initial load duke parents: diff changeset	419	}
90ce3da70b43 Initial load duke parents: diff changeset	420
90ce3da70b43 Initial load duke parents: diff changeset	421	// wrap a verifier stream around the real stream
90ce3da70b43 Initial load duke parents: diff changeset	422	return new JarVerifier.VerifierStream(
90ce3da70b43 Initial load duke parents: diff changeset	423	getManifestFromReference(),
90ce3da70b43 Initial load duke parents: diff changeset	424	ze instanceof JarFileEntry ?
90ce3da70b43 Initial load duke parents: diff changeset	425	(JarEntry) ze : getJarEntry(ze.getName()),
90ce3da70b43 Initial load duke parents: diff changeset	426	super.getInputStream(ze),
90ce3da70b43 Initial load duke parents: diff changeset	427	jv);
90ce3da70b43 Initial load duke parents: diff changeset	428	}
90ce3da70b43 Initial load duke parents: diff changeset	429
90ce3da70b43 Initial load duke parents: diff changeset	430	// Statics for hand-coded Boyer-Moore search in hasClassPathAttribute()
90ce3da70b43 Initial load duke parents: diff changeset	431	// The bad character shift for "class-path"
90ce3da70b43 Initial load duke parents: diff changeset	432	private static int[] lastOcc;
90ce3da70b43 Initial load duke parents: diff changeset	433	// The good suffix shift for "class-path"
90ce3da70b43 Initial load duke parents: diff changeset	434	private static int[] optoSft;
90ce3da70b43 Initial load duke parents: diff changeset	435	// Initialize the shift arrays to search for "class-path"
90ce3da70b43 Initial load duke parents: diff changeset	436	private static char[] src = {'c','l','a','s','s','-','p','a','t','h'};
90ce3da70b43 Initial load duke parents: diff changeset	437	static {
90ce3da70b43 Initial load duke parents: diff changeset	438	lastOcc = new int[128];
90ce3da70b43 Initial load duke parents: diff changeset	439	optoSft = new int[10];
90ce3da70b43 Initial load duke parents: diff changeset	440	lastOcc[(int)'c']=1;
90ce3da70b43 Initial load duke parents: diff changeset	441	lastOcc[(int)'l']=2;
90ce3da70b43 Initial load duke parents: diff changeset	442	lastOcc[(int)'s']=5;
90ce3da70b43 Initial load duke parents: diff changeset	443	lastOcc[(int)'-']=6;
90ce3da70b43 Initial load duke parents: diff changeset	444	lastOcc[(int)'p']=7;
90ce3da70b43 Initial load duke parents: diff changeset	445	lastOcc[(int)'a']=8;
90ce3da70b43 Initial load duke parents: diff changeset	446	lastOcc[(int)'t']=9;
90ce3da70b43 Initial load duke parents: diff changeset	447	lastOcc[(int)'h']=10;
90ce3da70b43 Initial load duke parents: diff changeset	448	for (int i=0; i<9; i++)
90ce3da70b43 Initial load duke parents: diff changeset	449	optoSft[i]=10;
90ce3da70b43 Initial load duke parents: diff changeset	450	optoSft[9]=1;
90ce3da70b43 Initial load duke parents: diff changeset	451	}
90ce3da70b43 Initial load duke parents: diff changeset	452
90ce3da70b43 Initial load duke parents: diff changeset	453	private JarEntry getManEntry() {
90ce3da70b43 Initial load duke parents: diff changeset	454	if (manEntry == null) {
90ce3da70b43 Initial load duke parents: diff changeset	455	// First look up manifest entry using standard name
90ce3da70b43 Initial load duke parents: diff changeset	456	manEntry = getJarEntry(MANIFEST_NAME);
90ce3da70b43 Initial load duke parents: diff changeset	457	if (manEntry == null) {
90ce3da70b43 Initial load duke parents: diff changeset	458	// If not found, then iterate through all the "META-INF/"
90ce3da70b43 Initial load duke parents: diff changeset	459	// entries to find a match.
90ce3da70b43 Initial load duke parents: diff changeset	460	String[] names = getMetaInfEntryNames();
90ce3da70b43 Initial load duke parents: diff changeset	461	if (names != null) {
90ce3da70b43 Initial load duke parents: diff changeset	462	for (int i = 0; i < names.length; i++) {
90ce3da70b43 Initial load duke parents: diff changeset	463	if (MANIFEST_NAME.equals(
90ce3da70b43 Initial load duke parents: diff changeset	464	names[i].toUpperCase(Locale.ENGLISH))) {
90ce3da70b43 Initial load duke parents: diff changeset	465	manEntry = getJarEntry(names[i]);
90ce3da70b43 Initial load duke parents: diff changeset	466	break;
90ce3da70b43 Initial load duke parents: diff changeset	467	}
90ce3da70b43 Initial load duke parents: diff changeset	468	}
90ce3da70b43 Initial load duke parents: diff changeset	469	}
90ce3da70b43 Initial load duke parents: diff changeset	470	}
90ce3da70b43 Initial load duke parents: diff changeset	471	}
90ce3da70b43 Initial load duke parents: diff changeset	472	return manEntry;
90ce3da70b43 Initial load duke parents: diff changeset	473	}
90ce3da70b43 Initial load duke parents: diff changeset	474
90ce3da70b43 Initial load duke parents: diff changeset	475	// Returns true iff this jar file has a manifest with a class path
90ce3da70b43 Initial load duke parents: diff changeset	476	// attribute. Returns false if there is no manifest or the manifest
90ce3da70b43 Initial load duke parents: diff changeset	477	// does not contain a "Class-Path" attribute. Currently exported to
90ce3da70b43 Initial load duke parents: diff changeset	478	// core libraries via sun.misc.SharedSecrets.
90ce3da70b43 Initial load duke parents: diff changeset	479	boolean hasClassPathAttribute() throws IOException {
90ce3da70b43 Initial load duke parents: diff changeset	480	if (computedHasClassPathAttribute) {
90ce3da70b43 Initial load duke parents: diff changeset	481	return hasClassPathAttribute;
90ce3da70b43 Initial load duke parents: diff changeset	482	}
90ce3da70b43 Initial load duke parents: diff changeset	483
90ce3da70b43 Initial load duke parents: diff changeset	484	hasClassPathAttribute = false;
90ce3da70b43 Initial load duke parents: diff changeset	485	if (!isKnownToNotHaveClassPathAttribute()) {
90ce3da70b43 Initial load duke parents: diff changeset	486	JarEntry manEntry = getManEntry();
90ce3da70b43 Initial load duke parents: diff changeset	487	if (manEntry != null) {
16082 a042f1412a78 8000210: Improve JarFile code quality weijun parents: 11274 diff changeset	488	byte[] b = getBytes(manEntry);
2 90ce3da70b43 Initial load duke parents: diff changeset	489	int last = b.length - src.length;
90ce3da70b43 Initial load duke parents: diff changeset	490	int i = 0;
90ce3da70b43 Initial load duke parents: diff changeset	491	next:
90ce3da70b43 Initial load duke parents: diff changeset	492	while (i<=last) {
90ce3da70b43 Initial load duke parents: diff changeset	493	for (int j=9; j>=0; j--) {
90ce3da70b43 Initial load duke parents: diff changeset	494	char c = (char) b[i+j];
90ce3da70b43 Initial load duke parents: diff changeset	495	c = (((c-'A')\|('Z'-c)) >= 0) ? (char)(c + 32) : c;
90ce3da70b43 Initial load duke parents: diff changeset	496	if (c != src[j]) {
90ce3da70b43 Initial load duke parents: diff changeset	497	i += Math.max(j + 1 - lastOcc[c&0x7F], optoSft[j]);
90ce3da70b43 Initial load duke parents: diff changeset	498	continue next;
90ce3da70b43 Initial load duke parents: diff changeset	499	}
90ce3da70b43 Initial load duke parents: diff changeset	500	}
90ce3da70b43 Initial load duke parents: diff changeset	501	hasClassPathAttribute = true;
90ce3da70b43 Initial load duke parents: diff changeset	502	break;
90ce3da70b43 Initial load duke parents: diff changeset	503	}
90ce3da70b43 Initial load duke parents: diff changeset	504	}
90ce3da70b43 Initial load duke parents: diff changeset	505	}
90ce3da70b43 Initial load duke parents: diff changeset	506	computedHasClassPathAttribute = true;
90ce3da70b43 Initial load duke parents: diff changeset	507	return hasClassPathAttribute;
90ce3da70b43 Initial load duke parents: diff changeset	508	}
90ce3da70b43 Initial load duke parents: diff changeset	509
90ce3da70b43 Initial load duke parents: diff changeset	510	private static String javaHome;
90ce3da70b43 Initial load duke parents: diff changeset	511	private static String[] jarNames;
90ce3da70b43 Initial load duke parents: diff changeset	512	private boolean isKnownToNotHaveClassPathAttribute() {
90ce3da70b43 Initial load duke parents: diff changeset	513	// Optimize away even scanning of manifest for jar files we
90ce3da70b43 Initial load duke parents: diff changeset	514	// deliver which don't have a class-path attribute. If one of
90ce3da70b43 Initial load duke parents: diff changeset	515	// these jars is changed to include such an attribute this code
90ce3da70b43 Initial load duke parents: diff changeset	516	// must be changed.
90ce3da70b43 Initial load duke parents: diff changeset	517	if (javaHome == null) {
90ce3da70b43 Initial load duke parents: diff changeset	518	javaHome = AccessController.doPrivileged(
90ce3da70b43 Initial load duke parents: diff changeset	519	new GetPropertyAction("java.home"));
90ce3da70b43 Initial load duke parents: diff changeset	520	}
90ce3da70b43 Initial load duke parents: diff changeset	521	if (jarNames == null) {
90ce3da70b43 Initial load duke parents: diff changeset	522	String[] names = new String[10];
90ce3da70b43 Initial load duke parents: diff changeset	523	String fileSep = File.separator;
90ce3da70b43 Initial load duke parents: diff changeset	524	int i = 0;
90ce3da70b43 Initial load duke parents: diff changeset	525	names[i++] = fileSep + "rt.jar";
90ce3da70b43 Initial load duke parents: diff changeset	526	names[i++] = fileSep + "sunrsasign.jar";
90ce3da70b43 Initial load duke parents: diff changeset	527	names[i++] = fileSep + "jsse.jar";
90ce3da70b43 Initial load duke parents: diff changeset	528	names[i++] = fileSep + "jce.jar";
90ce3da70b43 Initial load duke parents: diff changeset	529	names[i++] = fileSep + "charsets.jar";
90ce3da70b43 Initial load duke parents: diff changeset	530	names[i++] = fileSep + "dnsns.jar";
90ce3da70b43 Initial load duke parents: diff changeset	531	names[i++] = fileSep + "ldapsec.jar";
90ce3da70b43 Initial load duke parents: diff changeset	532	names[i++] = fileSep + "localedata.jar";
90ce3da70b43 Initial load duke parents: diff changeset	533	names[i++] = fileSep + "sunjce_provider.jar";
90ce3da70b43 Initial load duke parents: diff changeset	534	names[i++] = fileSep + "sunpkcs11.jar";
90ce3da70b43 Initial load duke parents: diff changeset	535	jarNames = names;
90ce3da70b43 Initial load duke parents: diff changeset	536	}
90ce3da70b43 Initial load duke parents: diff changeset	537
90ce3da70b43 Initial load duke parents: diff changeset	538	String name = getName();
90ce3da70b43 Initial load duke parents: diff changeset	539	String localJavaHome = javaHome;
90ce3da70b43 Initial load duke parents: diff changeset	540	if (name.startsWith(localJavaHome)) {
90ce3da70b43 Initial load duke parents: diff changeset	541	String[] names = jarNames;
90ce3da70b43 Initial load duke parents: diff changeset	542	for (int i = 0; i < names.length; i++) {
90ce3da70b43 Initial load duke parents: diff changeset	543	if (name.endsWith(names[i])) {
90ce3da70b43 Initial load duke parents: diff changeset	544	return true;
90ce3da70b43 Initial load duke parents: diff changeset	545	}
90ce3da70b43 Initial load duke parents: diff changeset	546	}
90ce3da70b43 Initial load duke parents: diff changeset	547	}
90ce3da70b43 Initial load duke parents: diff changeset	548	return false;
90ce3da70b43 Initial load duke parents: diff changeset	549	}
8387 f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	550
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	551	private synchronized void ensureInitialization() {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	552	try {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	553	maybeInstantiateVerifier();
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	554	} catch (IOException e) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	555	throw new RuntimeException(e);
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	556	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	557	if (jv != null && !jvInitialized) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	558	initializeVerifier();
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	559	jvInitialized = true;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	560	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	561	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	562
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	563	JarEntry newEntry(ZipEntry ze) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	564	return new JarFileEntry(ze);
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	565	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	566
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	567	Enumeration<String> entryNames(CodeSource[] cs) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	568	ensureInitialization();
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	569	if (jv != null) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	570	return jv.entryNames(this, cs);
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	571	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	572
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	573	/*
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	574	* JAR file has no signed content. Is there a non-signing
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	575	* code source?
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	576	*/
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	577	boolean includeUnsigned = false;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	578	for (int i = 0; i < cs.length; i++) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	579	if (cs[i].getCodeSigners() == null) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	580	includeUnsigned = true;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	581	break;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	582	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	583	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	584	if (includeUnsigned) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	585	return unsignedEntryNames();
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	586	} else {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	587	return new Enumeration<String>() {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	588
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	589	public boolean hasMoreElements() {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	590	return false;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	591	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	592
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	593	public String nextElement() {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	594	throw new NoSuchElementException();
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	595	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	596	};
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	597	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	598	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	599
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	600	/**
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	601	* Returns an enumeration of the zip file entries
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	602	* excluding internal JAR mechanism entries and including
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	603	* signed entries missing from the ZIP directory.
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	604	*/
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	605	Enumeration<JarEntry> entries2() {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	606	ensureInitialization();
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	607	if (jv != null) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	608	return jv.entries2(this, super.entries());
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	609	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	610
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	611	// screen out entries which are never signed
11274 7e7196757acd 7117249: fix warnings in java.util.jar, .logging, .prefs, .zip smarks parents: 9365 diff changeset	612	final Enumeration<? extends ZipEntry> enum_ = super.entries();
8387 f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	613	return new Enumeration<JarEntry>() {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	614
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	615	ZipEntry entry;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	616
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	617	public boolean hasMoreElements() {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	618	if (entry != null) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	619	return true;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	620	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	621	while (enum_.hasMoreElements()) {
11274 7e7196757acd 7117249: fix warnings in java.util.jar, .logging, .prefs, .zip smarks parents: 9365 diff changeset	622	ZipEntry ze = enum_.nextElement();
8387 f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	623	if (JarVerifier.isSigningRelated(ze.getName())) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	624	continue;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	625	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	626	entry = ze;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	627	return true;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	628	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	629	return false;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	630	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	631
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	632	public JarFileEntry nextElement() {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	633	if (hasMoreElements()) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	634	ZipEntry ze = entry;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	635	entry = null;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	636	return new JarFileEntry(ze);
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	637	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	638	throw new NoSuchElementException();
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	639	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	640	};
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	641	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	642
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	643	CodeSource[] getCodeSources(URL url) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	644	ensureInitialization();
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	645	if (jv != null) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	646	return jv.getCodeSources(this, url);
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	647	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	648
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	649	/*
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	650	* JAR file has no signed content. Is there a non-signing
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	651	* code source?
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	652	*/
11274 7e7196757acd 7117249: fix warnings in java.util.jar, .logging, .prefs, .zip smarks parents: 9365 diff changeset	653	Enumeration<String> unsigned = unsignedEntryNames();
8387 f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	654	if (unsigned.hasMoreElements()) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	655	return new CodeSource[]{JarVerifier.getUnsignedCS(url)};
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	656	} else {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	657	return null;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	658	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	659	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	660
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	661	private Enumeration<String> unsignedEntryNames() {
11274 7e7196757acd 7117249: fix warnings in java.util.jar, .logging, .prefs, .zip smarks parents: 9365 diff changeset	662	final Enumeration<JarEntry> entries = entries();
8387 f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	663	return new Enumeration<String>() {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	664
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	665	String name;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	666
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	667	/*
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	668	* Grab entries from ZIP directory but screen out
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	669	* metadata.
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	670	*/
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	671	public boolean hasMoreElements() {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	672	if (name != null) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	673	return true;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	674	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	675	while (entries.hasMoreElements()) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	676	String value;
11274 7e7196757acd 7117249: fix warnings in java.util.jar, .logging, .prefs, .zip smarks parents: 9365 diff changeset	677	ZipEntry e = entries.nextElement();
8387 f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	678	value = e.getName();
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	679	if (e.isDirectory() \|\| JarVerifier.isSigningRelated(value)) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	680	continue;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	681	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	682	name = value;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	683	return true;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	684	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	685	return false;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	686	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	687
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	688	public String nextElement() {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	689	if (hasMoreElements()) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	690	String value = name;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	691	name = null;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	692	return value;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	693	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	694	throw new NoSuchElementException();
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	695	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	696	};
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	697	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	698
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	699	CodeSource getCodeSource(URL url, String name) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	700	ensureInitialization();
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	701	if (jv != null) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	702	if (jv.eagerValidation) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	703	CodeSource cs = null;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	704	JarEntry je = getJarEntry(name);
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	705	if (je != null) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	706	cs = jv.getCodeSource(url, this, je);
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	707	} else {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	708	cs = jv.getCodeSource(url, name);
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	709	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	710	return cs;
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	711	} else {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	712	return jv.getCodeSource(url, name);
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	713	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	714	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	715
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	716	return JarVerifier.getUnsignedCS(url);
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	717	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	718
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	719	void setEagerValidation(boolean eager) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	720	try {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	721	maybeInstantiateVerifier();
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	722	} catch (IOException e) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	723	throw new RuntimeException(e);
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	724	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	725	if (jv != null) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	726	jv.setEagerValidation(eager);
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	727	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	728	}
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	729
11274 7e7196757acd 7117249: fix warnings in java.util.jar, .logging, .prefs, .zip smarks parents: 9365 diff changeset	730	List<Object> getManifestDigests() {
8387 f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	731	ensureInitialization();
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	732	if (jv != null) {
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	733	return jv.getManifestDigests();
f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	734	}
11274 7e7196757acd 7117249: fix warnings in java.util.jar, .logging, .prefs, .zip smarks parents: 9365 diff changeset	735	return new ArrayList<Object>();
8387 f0fa7bbf889e 6742654: Code insertion/replacement attacks against signed jars weijun parents: 5506 diff changeset	736	}
2 90ce3da70b43 Initial load duke parents: diff changeset	737	}

author	weijun
	Wed, 19 Sep 2012 12:58:43 +0800
changeset 16082	a042f1412a78
parent 11274	7e7196757acd
child 16117	3c521ba54a81
permissions	-rw-r--r--