Jarsigner:“此 jar 包含未验证证书链的条目." [英] Jarsigner: "This jar contains entries whose certificate chain is not validated."
问题描述
我在自签名 jar 上收到以下错误:
I get the following error on a self-signed jar:
jar verified.
Warning:
This jar contains entries whose certificate chain is not validated.
Re-run with the -verbose and -certs options for more details.
我是这样在罐子上签名的:
I signed the jar like this:
"C:\Program Files\Java\jdk1.7.0\bin\jarsigner" -keystore myKeyStore myJar.jar myAlias
我的 jar 有 2 个入口点:一个用于 java web start,一个用于小程序.
My jar has 2 entry points: One for java web start, and one for an applet.
- 如果我以 Java 网络启动方式运行 jar,则不会发生.
- 但是如果我将 jar 作为小程序运行.当我尝试访问嵌入在 jar 中的位图资源时,有时会收到强烈的安全警告.
使用 -verbose 和 -certs 选项会显示很多行.而我对此一无所知.这是输出:output.txt(下面复制的 6307 行的一部分).
Using the -verbose and -certs options shows a lot of lines. And I don't understand anything of this. This is the output: output.txt (part of the 6307 lines reproduced below).
s 157850 Tue Nov 08 12:57:44 CET 2011 META-INF/MANIFEST.MF
X.509, O=keyja.com
[certificate is valid from 17/08/11 17:32 to 24/07/11 17:32]
[CertPath not validated: null]
112909 Tue Nov 08 12:57:44 CET 2011 META-INF/KEYJA_CO.SF
1108 Tue Nov 08 12:57:44 CET 2011 META-INF/KEYJA_CO.RSA
sm 180 Tue Nov 08 12:16:40 CET 2011 com/keyja/client/a/a/a/k.class
X.509, O=keyja.com
[certificate is valid from 17/08/11 17:32 to 24/07/11 17:32]
[CertPath not validated: null]
sm 252 Tue Nov 08 12:16:40 CET 2011 com/keyja/client/a/a/a/r.class
...
(around 6000 lines of other output along the same lines)
s = signature was verified
m = entry is listed in manifest
k = at least one certificate was found in keystore
i = at least one certificate was found in identity scope
jar verified.
Warning:
This jar contains entries whose certificate chain is not validated.
如何对jar文件进行签名?
How to sign the jar file ?
推荐答案
感谢 Andrew Thompson.我对我的 jar 文件进行了签名,并找到了错误.最好不要签名,你是对的,因为签名没有意义,因为我不需要离开沙箱.
Thanks Andrew Thompson. I have unsigned my jar file, and found the bug. It's better unsigned you're right about this, because signing makes no point since I don't need to get out of the sandbox.
为了记录,错误是使用 jnlp.jar 库.为了使它工作,我使用 jnlp/applet 代码而不是标准标签启动了小程序.
For the record, the bug was the use of the jnlp.jar library. In order to make it work, I launched the applet using jnlp/applet code instead of a standard tag.
这篇关于Jarsigner:“此 jar 包含未验证证书链的条目."的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!