This Bugzilla instance is a read-only archive of historic NetBeans bug reports. To report a bug in NetBeans please follow the project's instructions for reporting issues.

Bug 24539 - Need new certificate for lib/ide.ks
Summary: Need new certificate for lib/ide.ks
Status: CLOSED FIXED
Alias: None
Product: platform
Classification: Unclassified
Component: -- Other -- (show other bugs)
Version: 3.x
Hardware: PC Linux
: P1 blocker (vote)
Assignee: rnovak
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2002-06-07 17:05 UTC by Jesse Glick
Modified: 2008-12-22 17:10 UTC (History)
3 users (show)

See Also:
Issue Type: DEFECT
Exception Reporter:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Jesse Glick 2002-06-07 17:05:24 UTC
According to the View Certificate button in Auto
Update wizard, the current lib/ide.ks shipped with
NetBeans ("NetBeans IDE", "netbeans.org") expires
July 28 2002. That means we need to get a new
certificate before this one expires. Specifically
it should go into 3.4, or people using 3.4 will
not be able to accept any NBMs as trusted.

Ales - also consider that currently AU will
probably permit lib/ide.ks to be overwritten by
new core.nbm's. Is this desirable? AFAIK the user
can choose to accept a new signature and add it to
the existing keystore, so I think this should be
done explicitly using the dialogs for this purpose
provided by AU. That would mean either (1) exclude
lib/ide.ks from core.nbm, (2) ignoring
netbeans/lib/ide.ks in updater.jar, or (3) both.
Comment 1 Jesse Glick 2002-06-14 14:53:59 UTC
Marking this a bug, which it will be if not fixed, to help ensure it
is tracked as part of critical issues for 3.4 release.
Comment 2 rnovak 2002-06-18 15:29:25 UTC
I've generated new certificate for Netbeans 3.4 and integrated public
key into lib/ide.ks New certificate is valid for 5 years.
IDE using new public key will accept NBMs signed with older key as
trusted. 
The only problem could be that Netbeans 3.4 NBMs which are signed with
new key will not be accepted by older Netbeans version as trusted. But
there's no problem to create a copy of such NBM and sign it with older
key.
Comment 3 Marian Mirilovic 2002-10-21 11:51:44 UTC
closed