[GR-49770] Safe Composition of Metadata #5173
Comments
vjovanov
modified the milestones:
GraalVM for JDK 17 / JDK 20 (June 13, 2023),
23.1.0 Release (September 19, 2023)
fniephaus
modified the milestones:
23.1.0 Release (September 19, 2023),
GraalVM for JDK 21 (September 19, 2023)
vjovanov
modified the milestones:
GraalVM for JDK 21 (September 19, 2023),
GraalVM for JDK 22 (March 19, 2024)
|
Hello! Release notes seem to say this issue is fixed, and yet, the issue is still open here. Who is right? :D |
|
The reflection part is fixed but marked as experimental. When you use This feature will become available as non-experimental in the next release (GraalVM for Java 22), and will be promoted to the default behavior as the community adopts it. The composability of the resource patterns is tracked at #7487 |
|
This item is now mostly complete when the |
vjovanov
modified the milestones:
GraalVM for JDK 22 (March 19, 2024),
GraalVM for JDK 23 (September 17, 2024)
spavlusieva
changed the title
|
This item is now complete as we have finished: #7487 |
github-project-automation
bot
moved this from In Progress
to Done
in GraalVM Community Roadmap
TL;DR
To make usage of third-party reachability metadata safe we must guarantee that metadata addition can't break existing programs.
This is currently not the case:
For reflective methods such as
java.lang.Class#getDeclaredMethodsthat return values based on reachability of other reflective elements.Because of this adding new metadata makes more elements reachable and can change program functionality in undesirable ways.
We must require that all reflective methods on
java.lang.Classrequire a metadata entry and that they: either return all elements when the metadata entry is present, or throw a missing-metadata exception when there is no metadata entry.For resource metadata that can currently contain exclude patterns. An added exclude pattern can accidentally remove resources from the image and break the functionality of a working program.
We must require that exclude patterns are regarded only within the scope of a single
resource-config.jsonfile.Safe Composition of Reflection Metadata
In Native Image, adding new metadata can break user programs because methods such as
java.lang.Class#getDeclaredMethodsreturn the set of currently reachable elements.In the following snippet
adding a metadata entry for a method from
AClasscan cause theSystem.exit(1)to be reached.Furthermore, this can happen by simply using methods from
AClassanywhere in the code as this makes new methods reachable.To allow safe composition of metadata we need to make sure that every reflective call on
java.lang.Classrequires a metadata entry.The following tables show metadata entries for all of those methods:
All methods above would return all elements when metadata entry is present, or throw a missing-metadata exception if the metadata entry is not present.
All methods above and corresponding metadata entries would be tracked by the Native Image agent.
Safe Composition of Resource Metadata
Resource metadata allows for
includepatterns such as{ "resources": { "includes":[{ "pattern": "assets/.*" }] } }and exclude patterns
{ "resources": { "excludes":[{ "pattern": "assets/.*.png" }] } }This allows metadata from third-party jars to remove a resource by accident. The second example above removes all
pngfiles from assets of another library.To allow safe composition, exclude patterns must apply only to resources that were matched by the include patterns in the same file. With this change the above
example would still include all files from assets as the exclude pattern doesn't have a corresponding include pattern.
To remove
pngfiles from assets the file would have to be specified as:{ "resources": { "includes":[{ "pattern": "assets/.*" }], "excludes":[{ "pattern": "assets/.*.png" }] } }Note that composing all examples above would still include all resources from
assetsas the first file doesn't have an exclude pattern.The text was updated successfully, but these errors were encountered: