This Bugzilla instance is a read-only archive of historic NetBeans bug reports. To report a bug in NetBeans please follow the project's instructions for reporting issues.
According to the View Certificate button in Auto Update wizard, the current lib/ide.ks shipped with NetBeans ("NetBeans IDE", "netbeans.org") expires July 28 2002. That means we need to get a new certificate before this one expires. Specifically it should go into 3.4, or people using 3.4 will not be able to accept any NBMs as trusted. Ales - also consider that currently AU will probably permit lib/ide.ks to be overwritten by new core.nbm's. Is this desirable? AFAIK the user can choose to accept a new signature and add it to the existing keystore, so I think this should be done explicitly using the dialogs for this purpose provided by AU. That would mean either (1) exclude lib/ide.ks from core.nbm, (2) ignoring netbeans/lib/ide.ks in updater.jar, or (3) both.
Marking this a bug, which it will be if not fixed, to help ensure it is tracked as part of critical issues for 3.4 release.
I've generated new certificate for Netbeans 3.4 and integrated public key into lib/ide.ks New certificate is valid for 5 years. IDE using new public key will accept NBMs signed with older key as trusted. The only problem could be that Netbeans 3.4 NBMs which are signed with new key will not be accepted by older Netbeans version as trusted. But there's no problem to create a copy of such NBM and sign it with older key.
closed