Integrated: 8332786: When dumping static CDS archives, explicitly assert that we don't use a CDS archive

[Thomas Stuefe]

On Thu, 23 May 2024 08:43:10 GMT, Thomas Stuefe <stuefe at openjdk.org> wrote:

> Currently, we don't use a CDS archive when dumping the static archive. And that is fine.
> 
> It has security implications: if a customer re-generates the dump with `-Xshare:dump`, the content of the dump should depend on only the runtime parts of the JVM, resp. only on those parts that had been built on the build host. It should not depend on an archive that may or may not have been produced after the build and that may be tainted.
> 
> This just reduces the attack surface for possible supply chain attacks.
> 
> Since we already do this, I'd only like to add explicit asserts to ensure that we continue to do this.

This pull request has now been integrated.

Changeset: 7b894bc4
Author:    Thomas Stuefe <stuefe at openjdk.org>
URL:       https://git.openjdk.org/jdk/commit/7b894bc4afa96bc04f0d58042f69becadb573e20
Stats:     2 lines in 1 file changed: 2 ins; 0 del; 0 mod

8332786: When dumping static CDS archives, explicitly assert that we don't use a CDS archive

Reviewed-by: iklam, dholmes

-------------

PR: https://git.openjdk.org/jdk/pull/19359