Hello all, I can explain the patch a bit more, The patch modifies framework/src/main/java/org/apache/felix/framework/cache/BundleArchive.java
It gets a general property "private static final String SFELIX_PROP=" fr.inria.ares.sfelix";" to know if we are in a secured environment. If yes, we call a private function checkSecurity in BundleArchive. The call is made at the end of each BundleArchive constructor. The checkSecurity, mainly tries to build an fr.inria.ares.sfelix.BundleSignatureChecker instance which verifies the signature in its construction phase. The framework/pom.xml is modified, since we need bundlesignaturechecker artifact To test the patch, just follow the README instructions ************** We need to converge on two elements : - The name of the property we should use to trigger the verification : smthing like : org.osgi.sfelix ? - Possibly the name and the way we access class we use to check signature. We can use a property and something like a forName(property) and have a generic call. Regards /stephane 2007/7/9, Pierre Parrend <[EMAIL PROTECTED]>:
Hello all, I have posted my implementation of the security layer for Felix on the jira: http://issues.apache.org/jira/browse/FELIX-22 do you (mostly Karl and Richard) want to have a look at the patch, or should I integrate the patch directly in the subversion 'trunk' ? let me know what do you prefer, best regards, Pierre -- Pierre Parrend doctorant, moniteur laboratoire CITI, 21, Av. Jean Capelle 69621 Villeurbanne Cedex [EMAIL PROTECTED] www.rzo.free.fr
-- Stephane Frenot | ARES INRIA / CITI, INSA-Lyon|mailto:[EMAIL PROTECTED] Bat. LĂ©onard de Vinci |http://ares.insa-lyon.fr/~sfrenot/ 21 av Jean Capelle | ICQ:643346 (et oui !) F-69621 Villeurbanne Cedex |+33 472 436 422/+33 617 671 714 --------------------------------------------------------------------------
