Bug 257787 - [security] CheckTrust phase always checks all the jars.
Summary: [security] CheckTrust phase always checks all the jars.
Status: RESOLVED INVALID
Alias: None
Product: Equinox
Classification: Eclipse Project
Component: p2 (show other bugs)
Version: 3.5   Edit
Hardware: PC All
: P3 normal (vote)
Target Milestone: ---   Edit
Assignee: P2 Inbox CLA
QA Contact:
URL:
Whiteboard:
Keywords: performance
Depends on:
Blocks:
 
Reported: 2008-12-05 17:19 EST by Eric W Li CLA
Modified: 2009-02-05 17:09 EST (History)
6 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Eric W Li CLA 2008-12-05 17:19:46 EST 
When I try to install a single feature with only one plug-in, it seems like p2 verifies all the existing signed plug-ins that were already installed.
Comment 1 Pascal Rapicault CLA 2008-12-05 20:16:02 EST 
By a quick look at the code I fail to see how this could be happening since the set of files passed to the CertificateChecker are derived from the set of artifacts that are being processed as part of an engine operation (see in CheckTrust#completePhase()).
Eric, how did you discover that? Could you provide a test case? Be careful though that what you see when you are selfhosting is not necessarily accurate.
Comment 2 Eric W Li CLA 2008-12-08 14:18:08 EST 
Pascal, after I did some research, I think I am using the self-hosting approach.   My test case is just launching a whole eclipse sdk ide and use the "install new software." under the Help menu.  Is self-updating what I need?  Do you have any simple test cases that would demonstrate the verification of only installing bundles/feature?
Comment 3 Pascal Rapicault CLA 2008-12-08 14:27:30 EST 
The simplest test case for now would be to run the End2End Test and see what happens when the source bundles are installed in the installPlatformSource method.
Comment 4 Eric W Li CLA 2009-02-05 17:09:14 EST 
It's not a bug.