我刚刚使用自签名证书将jar文件签名更改为使用Thawte的可信证书。这有效,但有2个问题。首先,我现在像以前一样获得初始Java控制台,但接下来是第二个,然后一段时间(大约1分钟)后,第一个关闭。其次,当我在插件中打开跟踪时,有463个连接请求到thawte站点(在第二个控制台中)。这反复显示如下:
security: Certificate validation succeeded using OCSP/CRL
security: Validate the certificate chain using CertPath API
security: SHA-256Certificate finger print: 250B4511AECDA826E699E0D46B4B4B5F4DFDB531AE1E4BE74E35D613F25E1722
security: SHA-256Certificate finger print: AF840CA2B9DFB776BF81AA94C401BC440C52E5C590C43607A13D6680D83E3349
security: SHA-256Certificate finger print: C99157DF28D28EBD87B8B041AACCF023CF1C9AD0D21FD7116149D7F96484FA51
security: SHA-256Certificate finger print: 3F9F27D583204B9E09C8A3D2066C4B57D3A2479C3693650880505698105DBCE9
security: The OCSP support is enabled
security: The CRL support is enabled
security: Failing over to CRLs: Certificate does not specify OCSP responder
network: Connecting http://ocsp.thawte.com/ with proxy=DIRECT
security: OCSP Response: GOOD
每次从jar文件加载类时都会触发此操作吗? (我似乎无法打开类加载/卸载的跟踪 - -XX:+ TraceClassLoading选项似乎不起作用......)
我只是使用标签来加载applet - 没有JNLP或任何东西。 (如果我使用,也会发生同样的情况):
<object type="application/x-java-applet" width="100%" height="879" id="sfnApplet_1" codebase="java:com/deltascheme/sfn/client/SfnApplet.class">
<param name="MAYSCRIPT" value="true">
<param name="type" value="application/x-java-applet;version=1.5">
<param name="cache_option" value="Plugin">
<param name="java_codebase" value="/sfn85/Content">
<param name="cache_archive" value="client.jar,lzma.jar">
<param name="IMAGE" value="Images/appletSplash.jpg">
<param name="centerimage" value="true">
<param name="java_code" value="com/xxx/yyy/client/Applet.class">
<param name="codebase_lookup" value="false">
<param name="browserName" value="Netscape">
<param name="browserVersion" value="5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1500.95 Safari/537.36">
<param name="java_arguments" value="-Djnlp.packEnabled=true -XX:+TraceClassLoading -Xmx512M">
</object>
感谢任何帮助(Thawte说这不是他们的错,我应该和Oracle通话。嗯......)