Bug 740754
Summary: | Double signed jars causing 'jarsigner -verify' to fail. | ||
---|---|---|---|
Product: | [JBoss] JBoss Enterprise BRMS Platform 5 | Reporter: | Petr Široký <psiroky> |
Component: | Build Process | Assignee: | Ryan Zhang <rzhang> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | Petr Široký <psiroky> |
Severity: | medium | Docs Contact: | |
Priority: | unspecified | ||
Version: | BRMS 5.2.0.GA | CC: | brms-jira, dpalmer, lpetrovi, paradhya, rzhang |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2014-10-15 17:26:14 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Petr Široký
2011-09-23 08:44:00 UTC
Is this breaking what we did in 5.1 release ? AFAIK the jars weren't signed (from JBoss) in 5.1.0 release. So yes, in some way, this is breaking what we did in 5.1. It would be nice to have it fixed, but I think it is not that serious. You should get exactly the same error when the jvm attempts to load the jars, this is serious. Oh, sorry I did not realized that. Thanks for pointing it out Doug. Currently we are not getting such error, when running Guvnor. It is probably because the badly signed jars are not loaded by jvm. There is an inbound Mead fix for the double signing issue; the patch should be applied before Thursday. The fix will remove all existing signatures from a jar before signing with the JBoss key. The incorrect signed jars are handled manually and this issue is fixed in ER5 release. So I change the status to ON_QA. VERIFIED fixed in ER5 |