Solved...
The org.eclipse.equinox.p2.engine JAR contained in the
jbdevstudio-product-eap-universal-7.1.1.GA-v20140314-2145-B688.jar has a ECLIPSE_.RSA
certificate that is signed by the root CA "GTE CyberTrust Solutions" but that
root CA is not present in the openjdk cacerts (via openssl as described above):
"
$openssl pkcs7 -in ECLIPSE_.RSA -print_certs -inform DER
subject=/C=US/O=GTE Corporation/OU=GTE CyberTrust Solutions, Inc./CN=GTE CyberTrust Global
Root
issuer=/C=US/O=GTE Corporation/OU=GTE CyberTrust Solutions, Inc./CN=GTE CyberTrust Global
Root
-----BEGIN CERTIFICATE-----
"
But
$keytool -list -v -keystore /usr/lib/jvm/java-7-openjdk-amd64/jre/lib/security/cacerts |
grep GTE
produces no results
But I have the GTE root CA cert available in /usr/share/ca-certificates/mozilla/ so the
steps to take are
a. Go to /usr/lib/jvm/java-7-openjdk-amd64/jre/lib/security/
b. #mv cacerts oldcacertsold
c. #cp /etc/ssl/certs/java/cacerts .
d. #keytool -keystore /usr/lib/jvm/java-7-openjdk-amd64/jre/lib/security/cacerts
-importcert -alias GTECyberTrustGlobalRoot -file
/usr/share/ca-certificates/mozilla/GTE_CyberTrust_Global_Root.crt
Now running java -jar jbdevstudio-product-eap-universal-7.1.1.GA-v20140314-2145-B688.jar
works without errors...
Now I just need to figure out how to use the bloody thing... It's as complex as a
space shuttle control panel!
Posted by forums
Original post:
https://community.jboss.org/message/866891#866891