Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Ensure static fields set during signed jar process #45

Commits on Sep 18, 2024

  1. Ensure static fields set during signed jar process

    When loading a signed jar file that is on the classpath, such as the
    bouncy castle signed JCE jar file, it has been observed that the value
    of `restrictedJarVerificationProviders` and `jarVerificationProviders`
    are set to `null`. This causes a NullPointerException during the loading
    process.
    
    This update moves the static declarations of both
    `restrictedJarVerificationProviders` and `jarVerificationProviders` to
    be prior to the method call `RestrictedSecurity.checkHashValues()` since
    this method call needs both of these fields to be initialized to work
    correctly.
    
    Signed-off-by: Jason Katonica <katonica@us.ibm.com>
    jasonkatonica committed Sep 18, 2024
    Configuration menu
    Copy the full SHA
    e6bcf7e View commit details
    Browse the repository at this point in the history