Re: jars not correct packed in release candidates !!!!
Posted by
Xerxes Rånby on
Oct 13, 2012; 8:06am
URL: https://forum.jogamp.org/jars-not-correct-packed-in-release-candidates-tp4026316p4026489.html
This is a generic and known issue is located in the Oracle browser plugin code.
Oracle decided to disable online certificate validation, OCSP, for the browser plugin in one of the recent Java 7 updates.
http://forum.jogamp.org/Win-7-1-7-0-07-b11-InvalidKeyException-Wrong-Key-Usage-on-all-applets-tp4026082.htmlWorkaround for Windows 7 and MacOS X running the Java 7 browser plugin:
Open the java control panel
System Preferences > Other > Java > Advanced > "Enable online certificate validation".
or change the deployment.properties entry:
deployment.security.validation.ocsp=true
Linux OpenJDK + IcedTea-web also runs the applets fine.
Oracle is working on a fix:
gouessej added a bugreport to Oracle:
http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=7197652now some code is up for review on the OpenJDK mailinglist to fix fundamental flaws in the OCSP certificate verification code:
http://mail.openjdk.java.net/pipermail/security-dev/2012-October/005646.htmlWe belive that Oracle will re-enable OSCP certificate validation by default in a future Java 7 update.