Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8217375

jarsigner breaks old signature with long lines in manifest

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Fixed
    • Icon: P3 P3
    • 13
    • 11
    • security-libs
    • None

        After JDK-6372077 the maximum length of a line in a manifest file was changed from 70 to 72 bytes. If a JAR file was signed with an old version of jarsigner and signed again using a different signer with jarsigner from JDK 11, the manifest file might be rewritten (if the manifest has any change, for example, a new file is added) with a different width. The manifest hash recorded in the original signature will not match the updated manifest and the old signature will not verify.

              weijun Weijun Wang
              weijun Weijun Wang
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Created:
                Updated:
                Resolved: