201419 – [sec] OSGi changes to enable load-time authorization in classloader

Some Eclipse Foundation services are deprecated, or will be soon. Please ensure you've read this important communication.

Bug 201419 - [sec] OSGi changes to enable load-time authorization in classloader

Summary: [sec] OSGi changes to enable load-time authorization in classloader

Status:	RESOLVED FIXED

Alias:	None

Product:	Equinox
Classification:	Eclipse Project
Component:	Incubator (show other bugs)
Version:	3.4
Hardware:	All All

Importance:	P3 normal (vote)
Target Milestone:	3.4 M3
Assignee:	Eric W Li
QA Contact:

URL:
Whiteboard:
Keywords:

Depends on:	201420 201421
Blocks:	153847
	Show dependency tree

Reported:	2007-08-28 09:40 EDT by Matt Flaherty
Modified:	2008-02-11 15:33 EST (History)
CC List:	2 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Matt Flaherty

2007-08-28 09:40:52 EDT

In order to enable white-list authorization at load-time, we need to make changes to the bundle loading process and/or the bundle classloading process.

Comment 1 Matt Flaherty

2008-02-11 15:33:54 EST

We're defined the "osgi.signedcontent.*" variables, defined TrustEngine and AuthorizationEngine for checking content, and connected them to load time of bundles and classloading of resources.