Re: [ease-dev] Signature verification checks

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

Re: [ease-dev] Signature verification checks

From: Christian Pontesegger <christian.pontesegger@xxxxxx>
Date: Thu, 29 Sep 2016 17:47:50 +0200
Delivered-to: ease-dev@xxxxxxxxxxx
List-archive: <https://dev.eclipse.org/mailman/private/ease-dev>
List-help: <mailto:ease-dev-request@eclipse.org?subject=help>
List-subscribe: <https://dev.eclipse.org/mailman/listinfo/ease-dev>, <mailto:ease-dev-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://dev.eclipse.org/mailman/options/ease-dev>, <mailto:ease-dev-request@eclipse.org?subject=unsubscribe>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.3.0

Hi Varun,

thanks for still working on the project. i commented your gerrit patches.


On 09/20/16 20:30, Varun Raval wrote:

In include method of EnvironmentModule, instead of passingurl.openStream to inject method, now I am passing url so that we canget URL string during check for signature, so that we can distinguishit from dynamic code segments. I am not completely sure about allconsequences of last step. It is working nicely for signature checks.

I see that you try to detect URIs this way. Unfortunately this is notsufficient if you want to distinguish local/remote files. eg you mighthave URIs like "file://...", "workspace://...", "script://...". Thechange itself makes sense, but I would put it into a separate bug/topic.


Christian

References:
- [ease-dev] Signature verification checks
  - From: Varun Raval

Prev by Date: [ease-dev] Signature verification checks
Next by Date: [ease-dev] Oomph Setup failed
Previous by thread: [ease-dev] Signature verification checks
Next by thread: [ease-dev] Oomph Setup failed
Index(es):
- Date
- Thread

Breadcrumbs