On Mar 9, 2006, at 1:35 PM, Philippe Laporte wrote: > Casey Marshall wrote: > >> On Mar 9, 2006, at 8:54 AM, Philippe Laporte wrote: >> >>> Does this library have (ie is in a perfect state) all the >>> security and signing stuff that classpath lacks right now? How >>> about the security audit? >>> >> >> I don't understand (and have been largely ignoring this thread, so >> I may have missed some context). > > > Unfortunate. Despite some people think I'm ugly, you'll come to > like me with time...give me a chance > Not you in particular; I saw "sablevm" and "license" and that discussion is always pointless. >> What do you think is missing from Classpath's security >> infrastructure? > > > support for signed jars, I was told > Nope. Classpath has had support for *verifying* signed jar files for some time now; we do currently lack support for *creating* signed jar files (i.e., we don't have a replacement for `jarsigner' yet) but I think Raif said he would look into that. I kinda doubt Harmony has a `jarsigner' yet, unless they were able to panhandle one from IBM or Intel.
