[RFC][IcedTea-Web]: Support for signed JNLP files
Jiri Vanek
jvanek at redhat.com
Fri Jun 17 01:04:09 PDT 2011
On 06/16/2011 11:30 PM, Saad Mohammad wrote:
> Hello,
>
> I have been working on getting IcedTea-Web to support signed JNLP files. Signing of a JNLP file is done by either having an exact copy of the launching JNLP file, or by having a template (introduced in JNLP v7.0, Change#3: http://jcp.org/aboutJava/communityprocess/maintenance/jsr056/jnlp-7_0-changes.html) that matches the launching JNLP file. At the moment, I have been trying to find a solution that will match two valid JNLP files regardless of the order of the elements and attributes. I have attached a patch file that I believe could be a solution to comparing the two JNLP files. This is just the beginning of the implementation, so it is not the final patch. I still have a lot more work to do but I was just
> wondering others opinion on this approach.
>
> Cheers,
> Saad Mohammad
>
>
Missing changelog :) and several technical nots below
> compareFiles.patch
>
>
> diff -r e0741a8c44b6 netx/net/sourceforge/jnlp/JNLPTemplate.java
> --- /dev/null Thu Jan 01 00:00:00 1970 +0000
> +++ b/netx/net/sourceforge/jnlp/JNLPTemplate.java Thu Jun 16 17:06:36 2011 -0400
> @@ -0,0 +1,136 @@
> +package net.sourceforge.jnlp;
> +
> +import java.io.File;
> +import java.io.FileNotFoundException;
> +import java.io.FileReader;
> +import java.io.IOException;
> +
> +import net.sourceforge.nanoxml.XMLElement;
> +import net.sourceforge.nanoxml.XMLParseException;
IIRC nanoxml parser is already par of icedtea-web..ok?
Please avoid static methods. One of the best practices is create immutable classes. In this case nice solution will be new JNLPTemplateComaprer(templateFile, jnlpFile) with method boolean compare(). This class can eg cache results and will be much more reusable clear.
Also, when exception can be thrown from constructor is very nice approach to use factory method which will return created object or throw exception and so avoid "half-constructed-state" which can appear otherwise.
> +
> +public class JNLPTemplate {
> +
> + public static boolean compareFile(File templateFile, File jnlpFile) throws IOException {
> +
> + if (templateFile != null&& jnlpFile != null) {
> + XMLElement templateXML = new XMLElement();
> + XMLElement jnlpXML = new XMLElement();
> +
> + try {
> +
> + templateXML.parseFromReader(new FileReader(templateFile));
> + jnlpXML.parseFromReader(new FileReader(jnlpFile));
> +
> + } catch (XMLParseException e) {
> + // TODO Auto-generated catch block
> + e.printStackTrace();
> + throw e;
> + } catch (FileNotFoundException e) {
> + // TODO Auto-generated catch block
> + e.printStackTrace();
> + throw e;
> + } catch (IOException e) {
> + // TODO Auto-generated catch block
> + e.printStackTrace();
> + throw e;
> + }
I do not believe this is correct way to catch exception - as i see the code, then you are NOT handling exception so you can send it up without any change (get rid of try catch block here completely)
You can be sure that it will be "printStackTraced" at the end for sure.
If you really insist on try/catch block then you can pack exception into your own eg new CompareJnlpFilesException(e) for all three exceptions. Then you can declare just your own exception and everything will be all right (this is probably better fix then throw three "strange" exceptions).
> +
> + Node templateNode = new Node(templateXML);
> + Node jnlpNode = new Node(jnlpXML);
> +
> + return compareNodes(templateNode, jnlpNode);
> + }
> +
> + return false;
> + }
> +
> + public static boolean compareNodes(Node template, Node jnlp) {
> +
again - get rid of static wherever it is possible. On the other side, utility method inside regular object can be static - and it is good, but use it judiciously.
> + if (template != null&& jnlp != null) {
> +
> + Node templateNode = (Node) template;
> + Node jnlpNode = (Node) jnlp;
> +
> + Node[] templateChild = templateNode.getChildNodes();
> + Node[] jnlpChild = jnlpNode.getChildNodes();
> +
> + // Check if both Nodes have the same name
> + if (templateNode.getNodeName().equals(jnlpNode.getNodeName())) {
> +
> + if (templateChild.length == jnlpChild.length) {
> + // To help prevent matched child from being compared again
> + boolean[] usedChild = new boolean[templateChild.length];
> +
> + for (int i = 0; i< jnlpChild.length; i++) {
> + for (int j = 0; j< templateChild.length; j++) {
> + boolean isSame = compareNodes(templateChild[j], jnlpChild[i]);
> +
> + if (!isSame&& j == templateChild.length - 1)
> + return false;
> + else if (isSame&& !usedChild[j]) {
> + usedChild[j] = true;
> + break;
> + }
> + }
> + }
So you got two elements into method, check their names, check number of their children (if not equals - return false). Then you are cmparing each child from jnlpChild with each child from templateChild by calling recursively this method.
If they are same by meaning of this method, you mark the node from templateChild as used and continue in looking for next match.
if the last child have no match - returning false, else check weather it is already used and break.
This gives sense but will need quite a huge unit tests to catch corner cases. Please add them before another classes are attached.
You can get rid of usedChild[] and make it many-times faster by using (linked)lists instead of arrays templateChild and jnlpChild and remove matching elements from them instead of marking.
> +
> + // If both Node values DO NOT match&& there are NO wildchars within the template
> + if (!templateNode.getNodeValue().equals(jnlpNode.getNodeValue())&& !templateNode.getNodeValue().equals("*")) {
> + return false;
> + }
Now you finish searching when template is not an asterisk and elements have different values. Give sense.
> +
> + return compareAttributes(templateNode, jnlpNode);
> + }
> +
> + }
> + }
> + return false;
> + }
Although i have some "inner suspicion" i can not prove it:) And idea behind algorithm itself is nice.
> +
> + private static boolean compareAttributes(Node templateNode, Node jnlpNode) {
> +
> + if (templateNode != null&& jnlpNode != null) {
> +
> + String[] templateAttributes = templateNode.getAttributeNames();
> + String[] jnlpAttributes = jnlpNode.getAttributeNames();
> +
> + if (templateAttributes.length == jnlpAttributes.length) {
empty line should be here, not below
> + // To help prevent matched attribute/value pair from being
> + // compared again
> +
> + boolean[] usedAttribute = new boolean[templateAttributes.length];
> +
> + for (int i = 0; i< templateAttributes.length; i++) {
> + for (int j = 0; j< jnlpAttributes.length; j++) {
> +
> + // If both attribute names matches
> + if (jnlpAttributes[i].equals(templateAttributes[j])) {
> +
> + String attribute = jnlpAttributes[i];
> +
> + // Breaks for loop if the template's attribute value has a wildchar, otherwise check if the values match
> + if (templateNode.getAttribute(attribute).equals("*")) {
> + usedAttribute[j] = true;
> + break;
> + }
> +
> + // Check if the Attribute values match
> + boolean isSame = templateNode.getAttribute(attribute).equals(jnlpNode.getAttribute(attribute));
> +
> + if (!isSame&& j == jnlpAttributes.length - 1)
> + return false;
> + else if (isSame&& !usedAttribute[j]) {
> + usedAttribute[j] = true;
> + break;
> + }
> + } else if (!jnlpAttributes[i].equals(templateAttributes[j])&& j == jnlpAttributes.length - 1)
> + return false;
> + }
> +
> + }
> + return true;
> + }
> + }
> + return false;
You are using same logic as in comparing elements, but I think that it is unnecessary to complicated. Each attribute can be exactly one times in xml's element. I would recomand to sort them alphabetically and then compare name and then value(ignoring asteriksed ones). If no match, you can safely return false.
> + }
> +}
> diff -r e0741a8c44b6 netx/net/sourceforge/jnlp/Node.java
> --- a/netx/net/sourceforge/jnlp/Node.java Tue Jun 14 13:30:55 2011 -0400
> +++ b/netx/net/sourceforge/jnlp/Node.java Thu Jun 16 17:06:36 2011 -0400
> @@ -19,6 +19,7 @@
> private XMLElement xml;
> private Node next;
> private Node children[];
> + private String attributeNames[];
>
> Node(XMLElement xml) {
> this.xml = xml;
> @@ -60,6 +61,19 @@
>
> return children;
> }
> +
> + String[] getAttributeNames() {
> + if (attributeNames == null) {
> + List<String> list = new ArrayList<String>();
> +
> + for (Enumeration e = xml.enumerateAttributeNames(); e.hasMoreElements();)
> + list.add(new String((String) e.nextElement()));
> +
> + attributeNames = list.toArray(new String[list.size()]);
why not to return list?!?!?!?!
> +
> + }
> + return attributeNames;
> + }
>
> String getAttribute(String name) {
> return (String) xml.getAttribute(name);
^^ I think for your puroses is much better to return list of entries <String key, String value>. But if you like your approach more...
At the end i think that this utility serve to compare two jnlp files where one can have wildchars quite good. Thanx for dooing it.
Regards J.
More information about the distro-pkg-dev
mailing list