Skip to main content

Certificate for signing Java3d jars

1 reply [Last post]
Hecaton
Offline
Joined: 2012-02-23
Points: 0

Hello.

I've been having some problems getting the java3d jars signed using our comodo certificate (2048bit key).

I can sign my own applets with it and it works fine but when I sign any java3d jars (or even jogl ones) I get a fail and 'InvalidKeyException: Wrong key usage' error message when trying to run in my site.

I've been back to Comodo and had the certificate reissued with no change in the results.

This sound familiar to anybody?

I used to be able to do this fine with our previous certificate which expired late last year. That one would even sign over the top of the jars (when they still used to be signed by oracle) and work fine.

Could it be that a 2048bit key is too large for signing java3d stuff?

Thanks for any help, Hecaton.

Reply viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.
Hecaton
Offline
Joined: 2012-02-23
Points: 0

Right, it's not the key length.

Finally had some useful information from comodo support, apparently the new certificate is a chain of certificates whereas the previous one was single. They don't do single ones anymore either. They are telling me that the problem comes from java trying to validate the chain as if it were single.

I'm signing the jars using the jdk1.6.0_31 jarsigner.

Anybody got any advice?

Hecaton.