Summary: | [security] CheckTrust phase always checks all the jars. | ||
---|---|---|---|
Product: | [Eclipse Project] Equinox | Reporter: | Eric W Li <eric_w_li> |
Component: | p2 | Assignee: | P2 Inbox <equinox.p2-inbox> |
Status: | RESOLVED INVALID | QA Contact: | |
Severity: | normal | ||
Priority: | P3 | CC: | albert_silliman, john.arthorne, mwflaher, pascal, srinivas_rao, tjwatson |
Version: | 3.5 | Keywords: | performance |
Target Milestone: | --- | ||
Hardware: | PC | ||
OS: | All | ||
Whiteboard: |
Description
Eric W Li
2008-12-05 17:19:46 EST
By a quick look at the code I fail to see how this could be happening since the set of files passed to the CertificateChecker are derived from the set of artifacts that are being processed as part of an engine operation (see in CheckTrust#completePhase()). Eric, how did you discover that? Could you provide a test case? Be careful though that what you see when you are selfhosting is not necessarily accurate. Pascal, after I did some research, I think I am using the self-hosting approach. My test case is just launching a whole eclipse sdk ide and use the "install new software." under the Help menu. Is self-updating what I need? Do you have any simple test cases that would demonstrate the verification of only installing bundles/feature? The simplest test case for now would be to run the End2End Test and see what happens when the source bundles are installed in the installPlatformSource method. It's not a bug. |