这个jar文件包含的条目，其签名证书将在六个月内到期 [英] This jar contains entries whose signer certificate will expire within six months

问题描述

我签我的罐子以不同的方式，但我不断收到上述错误消息时我用命令：

 的jarsigner -verify -verbose [我的罐子]
 

有没有摆脱这种错误的方法吗？请问我的code只是停止，如果它不重新认证后半年的工作？

下面是用于生成密钥放大器命令的整个集合;签名JAR：

 的keytool -genkey -keystore [密钥库] -alias [别名] -validity 2000
密钥工具-selfcert -keystore [密钥库] -alias [别名] -validity 2000
-keystore的jarsigner [密钥库] [JAR] [别名]
 

解决方案

  

有没有摆脱这种错误的方法吗？

这不是错误，但警告。至于如何避免它，确保证书都有超过6个月的有效期日期。对于自签名的证书，这是产生密钥时提供正确的参数的问题。这里是<一个href=\"http://docs.oracle.com/javase/7/docs/technotes/tools/windows/keytool.html#EXAMPLES\"><$c$c>keytool例如。

 密钥工具-genkeypair -dnameCN =马克·琼斯，OU = Java中，O = Oracle中，c =美国
  -alias业务-keypass＆lt;用于私有密钥与GT的新密码; -keystore /工作/ mykeystore
  -storepass＆lt;用于密钥库＆GT的新密码; -validity 180
 

重要的部分是 -validity 180 。 180天，或约6个月内，该例子。使用1800大约6年。

  

请问我的code只是停止，如果它不重新认证后半年的工作？

不完全是。

• 在一些系统中，用户将被警告证书已过期，并提供了选择接受它。如果他们这样做，它会恢复正常。例如的签名已过期：结果
  


• 其他系统可能被配置为自动拒绝过期的证书。在这些机器上，code将最有可能永远不会启动，或在极少数情况下，会加载，但应用了沙箱。

---

  

我以为我已经变成所有Java缓存关闭​​，虽然，因为它试图发展时，恼人的。

在测试过程中Applet的缓存是一个大问题。我会尽量避免在浏览器中测试小程序，直到绝对必要的。有3种方法，我知道的测试，将不缓存类的小程序。

1. 的appletviewer


2. 一个混合的小程序/应用程序


3. Appleteer （除了在某些方面applet浏览器稍微好一点，我前一阵子发展吧）

I've signed my jar in various ways, but I keep getting the above error message when I use the command:

jarsigner -verify -verbose [my jar]

Is there a way to get rid of this error? Will my code just stop working after six months if it's not re-certified?

Here is the entire set of commands used to generate the key & sign the Jar:

keytool -genkey -keystore [keystore] -alias [alias] -validity 2000
keytool -selfcert -keystore [keystore] -alias [alias] -validity 2000
jarsigner -keystore [keystore] [jar] [alias]

解决方案

Is there a way to get rid of this error?

It is not an error, but a warning. As to how to avoid it, make sure the certificate has a validity date that is longer than 6 months. For a self-signed certificate, that is a matter of providing the correct parameters when generating the key. Here is the keytool Example.

keytool -genkeypair -dname "cn=Mark Jones, ou=Java, o=Oracle, c=US"
  -alias business -keypass <new password for private key> -keystore /working/mykeystore
  -storepass <new password for keystore> -validity 180

The important part is -validity 180. 180 days, or around 6 months, for that example. Use 1800 for around 6 years.

Will my code just stop working after six months if it's not re-certified?

Not exactly.

• The user on some systems will be warned that the certificate has expired, and be offered the choice to accept it. If they do, it will work as normal. e.g. of "signature has expired":
  
• Other systems might be configured to automatically reject out of date certificates. On those machines, the code will most likely never start, or in rare cases, be loaded but have a sand-box applied.

---

I thought I had turned all java caching off though, as it's annoying when trying to develop.

Applet caching during testing is a big problem. I try to avoid testing applets in the browser until absolutely necessary. There are 3 ways I know of to test applets that will not cache the classes.

1. AppletViewer
2. An hybrid applet/application
3. Appleteer (slightly better than applet viewer in some respects, I developed it a while ago)

这篇关于这个jar文件包含的条目，其签名证书将在六个月内到期的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！