Abraham wrote: > Hi, > > I've downloaded the jss latest version (.jar 4.2.5, windows), but the sign > appears as caduced (older version too). Is this so? > I'm not quite sure what "caduced" means but I think you're stating that if you run "jarsigner -verify jss4.jar" you get: jar verified.
Warning: This jar contains entries whose signer certificate has expired. ---- JSS 4.2.5 was signed with a code signing certificate that was valid but near expiration. The jar should still work fine since it was signed when the certificate was valid. jarsigner was still able to "verified" the jar, and just points out that the code signing certificate has expired. If there is a problem please open a bug. We have a new code signing certificate that we will use for the next release of JSS. -glen > Regards, Abraham. > _______________________________________________ > dev-tech-crypto mailing list > dev-tech-crypto@lists.mozilla.org > https://lists.mozilla.org/listinfo/dev-tech-crypto > _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
