-
Enhancement
-
Resolution: Fixed
-
P3
-
8u20, 9
-
b28
| Issue | Fix Version | Assignee | Priority | Status | Resolution | Resolved In Build |
|---|---|---|---|---|---|---|
| JDK-8056335 | emb-9 | Andy Herrick | P3 | Resolved | Fixed | b28 |
| JDK-8224998 | 8u231 | Dmitry Markov | P3 | Resolved | Fixed | b01 |
| JDK-8229552 | emb-8u231 | Dmitry Markov | P3 | Resolved | Fixed | b01 |
The two arg version of satisfiesBaselineStrictly(version, baseline) is doing double duty - it is only used in 2 places and should be removed.
Confusion is created by having this method, which:
1.) confirms if version satisfies it's security baseline, and
2.) confirms that the baseline passed in is actually the security baseline for the family used in the version passed in.
This is used in JREMatcher.isDRSVersionMatch, when DRS version is "SECURE-XXX", after getting the baseline for version "XXX". Here it would be cleaner to separately check if XXX is the platform version of the version being checked, and that the version being checked satisfies it's baseline.
The other place this is used is in SecurityBaseline.satisfiesDRSVersion() (when DRS version is "SECURE-XXX" . Here the check already exists that the requested version is from the XXX family, so it would be enough to jsut call the one arg version.
Confusion is created by having this method, which:
1.) confirms if version satisfies it's security baseline, and
2.) confirms that the baseline passed in is actually the security baseline for the family used in the version passed in.
This is used in JREMatcher.isDRSVersionMatch, when DRS version is "SECURE-XXX", after getting the baseline for version "XXX". Here it would be cleaner to separately check if XXX is the platform version of the version being checked, and that the version being checked satisfies it's baseline.
The other place this is used is in SecurityBaseline.satisfiesDRSVersion() (when DRS version is "SECURE-XXX" . Here the check already exists that the requested version is from the XXX family, so it would be enough to jsut call the one arg version.
- backported by
-
JDK-8056335 remove 2 arg version of SecurityBaseline.satisfiesBaselineStrictly()
-
- Resolved
-
-
-
- Resolved
-
-
-
- Resolved
-