[HPCC-21364] Manifest support for signed code - HPCC

XML

Word

Printable

Details

Type: New Feature
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 7.2.0
Component/s: eclcc
Labels:
- RoadmapCompleted7.2

Compatibility:
Minor

Description

Now that users can add jar files to workunits via the manifest, we really should require that the manifest be "signed" in some way (and the jar files be confirmed to match that signature) if the option to allow embedded code only in signed modules is set.

I suspect that rather than signing the jar files, we should sign the manifest and have the manifest include crcs for the jar files

Attachments

Activity

People

Assignee:: Richard Chapman

Reporter:: Richard Chapman

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 25/Jan/19 2:07 PM

Updated:: 21/Mar/19 9:16 AM

Resolved:: 12/Feb/19 11:18 AM