Questions about signing [message #1696238] |
Sun, 24 May 2015 06:14  |
Eclipse User |
|
|
|
Hi guys,
I have two questions relating the signing process:
1. After I created a new certificate and enabled the site.signing property, building a feature repository in CI broke: the site.repacked and site.sign actions seem to work, but the site.packed action aborts with the following problem:
java.lang.SecurityException: invalid SHA1 signature file digest for plugin.xml
Caused by: java.lang.SecurityException: invalid SHA1 signature file digest for plugin.xml
at sun.security.util.SignatureFileVerifier.verifySection(SignatureFileVerifier.java:499)
at sun.security.util.SignatureFileVerifier.processImpl(SignatureFileVerifier.java:295)
at sun.security.util.SignatureFileVerifier.process(SignatureFileVerifier.java:238)
at java.util.jar.JarVerifier.processEntry(JarVerifier.java:316)
at java.util.jar.JarVerifier.update(JarVerifier.java:228)
at java.util.jar.JarFile.initializeVerifier(JarFile.java:383)
at java.util.jar.JarFile.getInputStream(JarFile.java:450)
at com.sun.java.util.jar.pack.PackerImpl$DoPack$InFile.getInputStream(PackerImpl.java:384)
at com.sun.java.util.jar.pack.PackerImpl$DoPack.run(PackerImpl.java:472)
at com.sun.java.util.jar.pack.PackerImpl.pack(PackerImpl.java:98)
at org.eclipse.buckminster.jarprocessor.RecursivePack200.pack(RecursivePack200.java:189)
at org.eclipse.buckminster.jarprocessor.RecursivePacker.pack(RecursivePacker.java:86)
at org.eclipse.buckminster.jarprocessor.JarProcessorActor.packJars(JarProcessorActor.java:120)
at org.eclipse.buckminster.jarprocessor.JarProcessorActor.packJars(JarProcessorActor.java:110)
at org.eclipse.buckminster.jarprocessor.JarProcessorActor.internalPerform(JarProcessorActor.java:84)
Any idea what this could cause? How can I track this down (debug output did not reveal further details)?
My Jenkins is running Java 8, could this be related?
2. The build structure consists of multiple Jenkins jobs building p2 repositories for certain features. A subsequent job builds two products utilising these repositories. Is it possible/recommended to have all repositories signed or should only the last job building the products perform the signing?
Axel
|
|
|
|
|
|
|
Powered by
FUDForum. Page generated in 0.03759 seconds