的jarsigner：＆QUOT;这个jar包含的条目其证书链不验证＆QUOT;。 [英] Jarsigner: "This jar contains entries whose certificate chain is not validated."

问题描述

我得到一个自签名的jar以下错误：

I get the following error on a self-signed jar:

jar verified.

Warning:
This jar contains entries whose certificate chain is not validated.

Re-run with the -verbose and -certs options for more details.

我签署了罐子是这样的：

I signed the jar like this:

"C:\Program Files\Java\jdk1.7.0\bin\jarsigner" -keystore myKeyStore myJar.jar myAlias

我的罐子有2个入口点：一个用于Java Web Start的，还有一个小程序

My jar has 2 entry points: One for java web start, and one for an applet.

• 如果我运行一个Java Web Start的方式罐子，它没有发生。


• 但是，如果我运行jar作为一个小程序。我得到在某个时候强大的安全警告，当我尝试访问的jar内嵌位图资源。

使用-verbose和-certs选项显示了很多线。我不明白这样的东西。这是输出： output.txt的（6307该行下面转载的一部分）

Using the -verbose and -certs options shows a lot of lines. And I don't understand anything of this. This is the output: output.txt (part of the 6307 lines reproduced below).

s     157850 Tue Nov 08 12:57:44 CET 2011 META-INF/MANIFEST.MF

      X.509, O=keyja.com
      [certificate is valid from 17/08/11 17:32 to 24/07/11 17:32]
      [CertPath not validated: null]

      112909 Tue Nov 08 12:57:44 CET 2011 META-INF/KEYJA_CO.SF
        1108 Tue Nov 08 12:57:44 CET 2011 META-INF/KEYJA_CO.RSA
sm       180 Tue Nov 08 12:16:40 CET 2011 com/keyja/client/a/a/a/k.class

      X.509, O=keyja.com
      [certificate is valid from 17/08/11 17:32 to 24/07/11 17:32]
      [CertPath not validated: null]

sm       252 Tue Nov 08 12:16:40 CET 2011 com/keyja/client/a/a/a/r.class
...
(around 6000 lines of other output along the same lines)

  s = signature was verified 
  m = entry is listed in manifest
  k = at least one certificate was found in keystore
  i = at least one certificate was found in identity scope

jar verified.

Warning: 
This jar contains entries whose certificate chain is not validated.

如何注册jar文件？

How to sign the jar file ?

推荐答案

感谢安德鲁·汤普森。我已经无符号我的jar文件，发现的bug。这是更好的无符号你是正确的这一点，因为签约是没有问题，因为我不需要走出沙盒。

Thanks Andrew Thompson. I have unsigned my jar file, and found the bug. It's better unsigned you're right about this, because signing makes no point since I don't need to get out of the sandbox.

有关备案，错误是使用jnlp.jar库。为了使其工作，我用JNLP /小程序code，而不是一个标准的标签推出的小程序。

For the record, the bug was the use of the jnlp.jar library. In order to make it work, I launched the applet using jnlp/applet code instead of a standard tag.

这篇关于的jarsigner：＆QUOT;这个jar包含的条目其证书链不验证＆QUOT;。的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！