You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@river.apache.org by "Bob Scheifler (JIRA)" <ji...@apache.org> on 2007/08/01 15:44:53 UTC

[jira] Created: (RIVER-169) allow result caching in Security.verifyCodebaseIntegrity

allow result caching in Security.verifyCodebaseIntegrity
--------------------------------------------------------

                 Key: RIVER-169
                 URL: https://issues.apache.org/jira/browse/RIVER-169
             Project: River
          Issue Type: Improvement
          Components: net_jini_security
    Affects Versions: jtsk_2.0
            Reporter: Bob Scheifler
            Priority: Minor


Bugtraq ID [6293073|http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=6293073]

The spec for Security.verifyCodebaseIntegrity permits caching of verifier instances, but does not permit caching of verification results. In contrast, the spec for ClassLoading does permit caching. To the extent that most calls to Security.verifyCodebaseIntegrity originate from ClassLoading, perhaps it doesn't matter where the caching happens, but it would seem more consistent to allow it in both. A minor note: the ClassLoading spec seems to be written to only allow caching at the granularity of a codebase, rather than at the granularity of a URL. There doesn't seem to be a reason to disallow the latter in the Security spec.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.