Skip to main content


Eclipse Community Forums
Forum Search:

Search      Help    Register    Login    Home
Home » Eclipse Projects » Equinox » Plugin certificate
Plugin certificate [message #491467] Wed, 14 October 2009 17:37 Go to next message
Peter Stibrany is currently offline Peter StibranyFriend
Messages: 37
Registered: July 2009
Member
Hello,

I noticed that Eclipse 3.6M2 now displays a warning when installing
unsigned plugins. I wonder what kind of certificate do I need to make
Eclipse happy and not get warning. Would Comodo Code Signing Certificate
be OK? How can I determine this myself?

Thank you very much,
-Peter Stibrany

Report message to a moderator

Re: Plugin certificate [message #491556 is a reply to message #491467] Thu, 15 October 2009 01:22 Go to previous messageGo to next message
Ben Vitale is currently offline Ben VitaleFriend
Messages: 247
Registered: July 2009
Senior Member
I haven't seen M2 yet, but I suspect you just need to sign your bundle JAR files with the jarsigner utility.

You can either do this headlessly via PDE build [1] or by specifying signing options when you Export from the workbench.

[1] http://help.eclipse.org/galileo/topic/org.eclipse.pde.doc.us er/tasks/pde_controlling_output.htm

Report message to a moderator

Re: Plugin certificate [message #491564 is a reply to message #491556] Thu, 15 October 2009 04:43 Go to previous messageGo to next message
Peter Stibrany is currently offline Peter StibranyFriend
Messages: 37
Registered: July 2009
Member
Hello Ben,

thank you for answer. My question was more about whom should I get my
certificate from if I want to get rid of warning. Is any certificate OK
(even self-signed certificate)? Or does P2 trust some certificates more
than others.

-Peter

ps: I am sorry if I got terminology wrong. This certificates stuff
always confuses me.

Ben Vitale wrote:
> I haven't seen M2 yet, but I suspect you just need to sign your bundle
> JAR files with the jarsigner utility.
> You can either do this headlessly via PDE build [1] or by specifying
> signing options when you Export from the workbench.
>
> [1]
> http://help.eclipse.org/galileo/topic/org.eclipse.pde.doc.us er/tasks/pde_controlling_output.htm
>

Report message to a moderator

Re: Plugin certificate [message #491622 is a reply to message #491564] Thu, 15 October 2009 09:28 Go to previous messageGo to next message
Tom Hofmann is currently offline Tom HofmannFriend
Messages: 770
Registered: July 2009
Senior Member
Peter,

https://bugs.eclipse.org/bugs/show_bug.cgi?id=231204 suggests that the
cacerts database provided by the JRE is used as the set of trusted root
certificates.

The Sun JREs typically ship with the usual suspects in that cacerts
file: Verisign and all those. See

http://java.sun.com/javase/6/docs/technotes/tools/windows/ke ytool.html#cacerts

for the complete list.

HTH, tom


Peter Stibrany wrote:
> Hello Ben,
>
> thank you for answer. My question was more about whom should I get my
> certificate from if I want to get rid of warning. Is any certificate OK
> (even self-signed certificate)? Or does P2 trust some certificates more
> than others.
>
> -Peter
>
> ps: I am sorry if I got terminology wrong. This certificates stuff
> always confuses me.
>
> Ben Vitale wrote:
>
>> I haven't seen M2 yet, but I suspect you just need to sign your bundle
>> JAR files with the jarsigner utility.
>> You can either do this headlessly via PDE build [1] or by specifying
>> signing options when you Export from the workbench.
>>
>> [1]
>> http://help.eclipse.org/galileo/topic/org.eclipse.pde.doc.us er/tasks/pde_controlling_output.htm
>>
>>

Report message to a moderator

Re: Plugin certificate [message #491754 is a reply to message #491622] Thu, 15 October 2009 16:32 Go to previous messageGo to next message
Peter Stibrany is currently offline Peter StibranyFriend
Messages: 37
Registered: July 2009
Member
Thank you very much Tom!

-Peter

Tom Hofmann wrote:
> Peter,
>
> https://bugs.eclipse.org/bugs/show_bug.cgi?id=231204 suggests that the
> cacerts database provided by the JRE is used as the set of trusted root
> certificates.
>
> The Sun JREs typically ship with the usual suspects in that cacerts
> file: Verisign and all those. See
>
> http://java.sun.com/javase/6/docs/technotes/tools/windows/ke ytool.html#cacerts
>
>
> for the complete list.
>
> HTH, tom
>
>
> Peter Stibrany wrote:
>> Hello Ben,
>>
>> thank you for answer. My question was more about whom should I get my
>> certificate from if I want to get rid of warning. Is any certificate OK
>> (even self-signed certificate)? Or does P2 trust some certificates more
>> than others.
>>
>> -Peter
>>
>> ps: I am sorry if I got terminology wrong. This certificates stuff
>> always confuses me.
>>
>> Ben Vitale wrote:
>>
>>> I haven't seen M2 yet, but I suspect you just need to sign your bundle
>>> JAR files with the jarsigner utility.
>>> You can either do this headlessly via PDE build [1] or by specifying
>>> signing options when you Export from the workbench.
>>>
>>> [1]
>>> http://help.eclipse.org/galileo/topic/org.eclipse.pde.doc.us er/tasks/pde_controlling_output.htm
>>>
>>>
>>>

Report message to a moderator

Re: Plugin certificate [message #638449 is a reply to message #491467] Thu, 11 November 2010 10:57 Go to previous message
James Grieg is currently offline James GriegFriend
Messages: 1
Registered: November 2010
Location: San Jose, California, USA
Junior Member
It was great convo to take a look and get info out of it.

Report message to a moderator

Previous Topic:No *.product_root.win32.win32.x86 when exporting product
Next Topic:Getting access to bundle localization
Goto Forum:
  

[ Syndicate this forum (XML) ] [ RSS ]

Current Time: Fri Apr 26 13:53:33 GMT 2024

Powered by FUDForum. Page generated in 0.03152 seconds
.:: Contact :: Home ::.

Powered by: FUDforum 3.0.2.
Copyright ©2001-2010 FUDforum Bulletin Board Software

Back to the top

Sign up to our Newsletter

A fresh new issue delivered monthly