ApplicationManager and code signing

Similar Questions

• 1.1 update and Code signing

  Well, I had a time getting my upgrade to work.  The entire thread is here.  It seems that my correspondents gave a solution, so I just reinstalled everything from scratch (Eclipse 3.5 with Blackberry plugins).

  This time, when I went to import the files (window-> Preferences-> Blackberry Java Plugin-> Signature tool) code signing, I chose the directory, and he said, ' key Signature files is not found.  This is the directory with the files in it .csi, and they are there.  So, why can't you find them?  Is this another directory, it needs?

  Answered my own question: no, it looks for the .csk file, I found and import * said * TI completed successfully.  So we'll just see how the project is going...

• JDE and code signing of device vs. Simulator...

  I have a test application which is just a very simple application which is a screen with a button above. I click the button and change the background color of the screen. This works very well in the Simulator. Now, I have 2 versions of this code. A version that is running on the real device and another version does not work on the physical device (although on the Simulator).

  The only difference between the applications is as follows. On the dysfunctional version, I used involved objects code signing, but then later removed this code by commenting out. After that, the app seems does not not in the unit. I did a full clean and rebuild of all, but it doesn't seem to make a difference. It's almost like the links in the application of something because of the requirement that is not removed after signing of code condition code is removed... and this is the stop of modified versions of this code to run on the device until I have reset something in the JDE code signing.

  Ideas for what something might be?

  Thank you

  -Donald

  I SOLVED IT!

  When I removed some resource files I had used when test resources (but used is no longer), the problem disappeared. I'm in a com/rim/samples directory structure... I guess the resources was my problem and nothing to do with the directory.

  On further review, resource files use a package command, so everyone the reading of this... Don't forget NOT TO CHANGE THE order of the package in your resource files too.

  Thanks for any input... I love javaloader.exe...

  -Donald

• Create the certificate and Code signing

  Hi all

  I'm still a little confused on the operation of the certificate and the sign Code.

  First I used Flash Builder Burrito to create my certificate and I choose my file syc. After that, I got an email from RIM saying that my registration has been completed. After that, I realized that the certificate I created has a different name than I used to ask my sign code. When I created a new graduate with the right name, I could associate the core sign in my new certificate and get this error

  

  When I tried to sign my application via command line, I've got it successfully: "Bar signed."

  Does anyone know why I get this error message, and if the command line worked really. can I use different certificate with a sign code?

  Thank you very much

  Hey arthur,.

  the rule is that if you mess up the record in some way, it is best to ask a new set of signature keys. You can not reinstated a key already registered. also, I saw that you use Flash Builder to make the entry to the registry. Although I've seen this work, I recommend that do the actual packing and signature via command line. Good luck!

• BBM SDKS and code signing

  After plugging in version 1.1 of the SDK BBM on my application I wonder to sign code for what is called "RIMAPPSA2" in addition to the usual RRT, RBB, and CPR.

  So I guess my question is what I have to get an extra key from RIM or is there something wrong with the .jar file that I join?

  In case someone else runs into this, the solution is that not actually package you the SDK with the application. Instead, the .jar file is added to the project as a property (identical to the OS SDK). It is significantly different then how you would treat the PaymentSDK. Then do not include the .jar in the project you are is more invited to sign up for RIMAPPSA2.

• App packaging and Code-signing (Flash Builder Burrito)

  Hi guys,.

  I would like to know if the function "export version Release" (the tab Flash Builder project in the top menu) does not work correctly or if I should use the command line for the packaging. I see that my .bar includes the META-INF / "MANIFEST. MF' it's supposed to get generated only after the signature of the app.

  Thank you

  Hi daniel,.

  Yes, you should always use the tools of command line to package and sign your applications. There is a bug in the IDE that prevents it to properly sign the app here is a thread that can help you with the signature of the command line:

  http://supportforums.BlackBerry.com/T5/Tablet-OS-SDK-for-Adobe-Air/useful-tip-package-images-via-com...

  Good luck!

• Orientation of the storm and code signing

  is it possible to change the orientation of the screen of the storm without using the API signed?

  Yes, turn on the phone.

  OK in a sense non-joking, if you're talking about defining what directions are allowed, you need key for use UiEngineInstance.setAcceptableDirections of signature.

  You need it for the view class, but you can get the values themselves, so that you don't need to actually use the class, thus avoiding the requirement of signing key.

• How to record the code signing keys

  Hi I'm luis

  I'm trying to register, but I got an error

  In Eclipse the BlackBerry SDK tools Carpet > Bar signatory.

  does not appear.

  I use the eclipse plugin

  Thank you.

  http://supportforums.BlackBerry.com/T5/testing-and-deployment/BlackBerry-applications-and-code-SIGNI...

  Please click on solved if it helps.

  Thank you

• Updating JRE 7 45 and JAR signing mess

  I'm at my wits end with Java.  Ask for assistance with a person who has done this successfully, especially with the cards to chip/PKCS11.  My problem is that no matter how I sign the deploymentruleset.jar, my test sites, I'm going to continue to get the warning pop up with "the certifica is not valid and cannot be used to verify the identity of the Web site" as well as "this request will be blocked in a future update of security Java because the manifest files JAR does not contain the permissions attribute."  I changed my ruleset.xml a billion times, even try to whitelist as a last resort for at least check if it is reading the file, but nothing helped.  All of this seems to come from the way in which the JAR file is signed.

  The documentation for java that I see is basically stating as, 'oh, just go buy a certificate.  For many of us, this isn't an option, and we are forced to rely on our internal case.  In addition, you need a certificate for code signing to do this, so I I was handed a certificate based on the chips for this, which forced me to invoke - stores ZERO and all that jazz.  So I have provided a certificate based on the chips to run the task.  After a long and brutal journey, I was finally able to sign without getting "the certificate of the signer chain is not validated.  Now, it seems validated.  It was a week in the process.  It was downloading and adding certificates into the cacerts keystore.  It was after another brutal trip, trying to figure out how to read my card chip with ActivClient, then another trip brutal trying to read a secondary card reader (slot = 1 must be added to the cfg file).  Yes, I modify the security attributes (and others) a million different ways and test.  Same result.

  So now, no matter what I do, the sites I have test on do not feel that the jar file is a certificate chain.  Yes, I added the item to the white list, and after I proceed after the warning, told me so I can't continue "Blocked by deployment Application rule set" because "Cannot verify the self-signed deployment rule POT Set".  Several variations of the test site (including wildcard characters) are in the ruleset.xml.  The ruleset.xml displays correctly when in the Java Control Panel console.

  Why it has become ridiculously difficult for anyone to deploy it?  I get security, but if you can't document correctly different methods to do this, with traps and the FAQ, it is rather useless.  Before you point me to a document Oracle, rest assured, I read all of them.

  Has anyone out there successfully done this with a cert a code of a CA signing token-based internal?  What is an obligation to buy a cert based on external files for this?

  Thank you

  Nate

  A member of my team was able to identify a step that missed me.  I wrote a 20 step guide on how to do it, but the forums won't let me copy and paste.  Let me give you a few highlights...

  (1) If you have ActivClient, you need to add a line of code at the end of the java.security file, but also to create a file cfg somewhere on your machine and point the java.security file cfg code.

  Line at the end of the java.security file... "#configuration for security omitted 1.6 security.provider.7 sun.security.pkcs11.SunPKCS11 c:/temp/pkcs11.cfg = providers (or what you call the cfg).

  Inside the cfg file, you must specify the location of your ActiveClient acpkcs211.dll.  If you use a secondary smart card reader, you must also specify the location = 1 at the end of the cfg file.

  name = ActivCard

  Library = c:\program files\actividentity\activclient\acpkcs211.dll

  location = 1

  (2) create the ruleset.xml according to your needs

  (3) create a file named security.txt and place "permissions: all-permissons ' on line 1 and ' codebase: *" on line 2.

  (4) copy the two files above to the JDK\bin

  (5) your certificates root export to an x.509 .cer file.

  (6) to export the file RECs certificate of Internet Explorer (it was a step that I missed) code signing.

  (7) import the code signing certificate in your trusted root certificates (it was a step that I missed).

  (8) import your root certificates and signature of the certs (cer files) into the code cacerts file.  (I missed the part of code signing cert)

  For example

  keytool - keystore "c:\program files\Java\jdk1.7.0_45\jre\lib\security\cacerts" - importcert-alias alias rootcert.cer

  Repeat the steps for the other roots, middle and code signing cert

  (9) create the jar file

  (10) find the alias of the certificate code using keytool - keystore NONE - stores PKCS11-list - v

  (11) sign the jar file with the code inserted into a smart card reader, using the alias from above as the last parameter of the token-signing certificate

  jarsigner - keystore NONE - PKCS - signedjar alias DeploymentRuleSet.jar DeploymentRuleset.jar stores

  (12) copy the jar signed at c:\windows\sun\java\deployment

  (13) check the ruleset works by checking Java in the control panel

  (14) to test your Web site

• Process * \MCSHIELD. EXE the nest (428) contained code signed or corrupted and could not perform an operation with a McAfee driver.

  XP SP3 system

  I get warnings like this when Mcafee updates.

  Process * \MCSHIELD. EXE the nest (428) contained code signed or corrupted and could not perform an operation with a McAfee driver.

  Process * \SVCHOST. EXE the nest (1632) contained code signed or corrupted and could not perform an operation with a McAfee driver.

  Is this a problem Microsoft or Mcafee?

  Do I need to fix?

  In the McAfee forums, there are several similar positions such as:

  https://community.McAfee.com/message/241542

  I'll sue your question on in their community, as they already seem to know about it.

  I would also say that, unless you are very fond of McAfee or you are forced to use it, you plan to replace it with something that has a smaller footprint, uses less resources and doesn't have these problems - something like Microsoft Security Essentials, you can get here:

  http://Windows.Microsoft.com/en-us/Windows/Security-Essentials-download

  MSE completed with the free version of MBAM and SAS should permanently keep your clean enough unless you're a daredevil like me:

  Download, install, update and do a quick scan with these free malware detection programs (not at the same time) and remove all threats:

  Malwarebytes (MMFA): http://www.malwarebytes.org/products/malwarebytes_free
  SUPERAntiSpyware: (SAS): http://www.superantispyware.com/

  SAS will probably report a lot of tracking cookies and you can just let him delete them.

  Even if you keep McAfee, I always supplement it with MBAM and SAS since no single AV program does seem to know everything.  If your McAfee of your system is clean, I would interpret that means - McAfee found nothing, says he knows.  It is prudent to use more than a reputable scanner to get more coverage.

  If you choose to spend (and you can't have both at the same time), you must be sure to use the uninstaller that you can get from here:

  http://service.McAfee.com/FAQDocument.aspx?LC=1033&ID=TS101331

  Your system will give you better performance.

• Problem with WebInspector: error: Code signing request failed car-development-Application Mode in the East of the demo is present and is not set [false].

  Hi, I have a problem running the webinspector on my dev alpha.

  Whenever I have create bar folder with the d flag, and then run the signature tool, I got the error message:

  Error: Code signing of the petition failed because Application-Development-Mode demo
  is is present and not set [false].

  How to solve this problem? If I generate the .bar without the flag - d, can I sign and execute on the device, but without web Inspector

  I found the error

  I just had to use the indicator g in bbwp and set my password

  and not reuse bbwp and then the signing tool

• Distribution of Code Signing and OTA

  I'm developing an application that uses APIs that require code signing. I received my key, installed and used the tool in the code signing eclipse plugin to sign my application.  I can install the application via the desktop tools and I normally see a prompt "Do you want to grant the status of trusted application xxx" when I run the application.  Everything is fine after that.  Now the question I want to distribute the application on the web within my company.  I have other applications are implemented in this way, for distribution to work, but when I run the application, I get the error "xxx uses a secure API", indicating that it has not been code signed.  I copy my files .cod files .jad, etc. on the server of web/results expected / / in my eclipse solution.  The web, do not exit is signed?  Is there a way to force the eclipse plugin to sign the web output or you can do it manually?  Any other reason, it would not work?

  It turns out that our Web server was actually used older versions of files that were not properly signed.  We were storing the .cod files in a database and someone wrote the wrong application, basically.

• Versions of Blackberry and warnings from Code signing

  Greetings-

  I'm new to the Blackberry development, and, in fact, this is my first post after developing an app for a couple of months.  It went well, but it left me with a few general questions.  I do not know this is the right forum for these questions, then, otherwise, a pointer to the right place to ask this would be appreciated:

  1. I want to be able to customize the wallpaper.  I found a long thread on the web that gave a complicated for this technology, and I also saw the décor package which makes it a piece of cake; However it seems that décor package have not been around prior to version 4.6.  This led to the question: is there anywhere I can go to get a good idea of how the older & mature OSs are still used?  I found a Wikipedia site that gave a glimpse of all the carriers, devices on which they are based and which OS they support on these devices and there were a bunch of still be supported with OSs before 4.6.  But there is no indication of the number of people still use these.  Is there a "lot" of devices with the OSs before 4.6?  And where can I get a summary of the Blackberry range, preferably in a sort of comparative format (as a matrix of features vs model number)?

  2. in my Eclipse workspace, I have a plethora of messages like:

  The path location type Resource Description
  Discourage access: the getHeight() method of display type is not accessible due to restrictions on required library C:\Program Files\Eclipse\plugins\net.rim.eide.componentpack5.0.0_5.0.0.14\components\lib\net_rim_api.jar BackgroundManager.java SlickSwitch/src/net/infoisland/net/AC line 63 Java problem

  I asked and got my code signing keys and have signed with (apparently) success of my application.  Why I always have these warnings and how do I get rid of them (probably the answer to any of these questions will also meet each other ;-)?

  TIA,
  ANW

  (1) there are many devices on the market that supports less than 4.6 OS versions. It depends on who your audience is. Indeed, the BlackBerry Curve (4.5) is one of the best selling smartphones right now so there is a way to go before the changes.

  To change backgrounds, you must use methods of custom paint to do prior to 4.6. Try using paintBackground of IPY and drawBitmap to add a chart. Also check out the graphics API if you need more.

  (2) it depends on what version you have.

  1.1:

  Window > Preferences > BlackBerry Java Plugin > Code Signing

  Check all the signatures that apply to you (if in doubt, check all)

  For 1.0:

  BlackBerry > configure the workspace BlackBerry > BlackBerry JDE > Code Signing

  Check all the signatures that apply to you (if in doubt, check all)

• Code sign VISA raw driver USB for Windows 8

  Hi guys,.

  I wrote a LabVIEW program that communicates with a measuring using NI-VISA (class raw USB) USB device.
  With the development of Driver NI-VISA Wizard, I created two .inf files of drivers (for XP/2000 and 7/Vista).
  It works like a charm on my computer (Windows 7, 64-bit) and on the computers running Windows XP and 32-bit versions of Windows Vista and 7.
  I also have to work on 64 bit versions of Windows Vista and 7 using "disable driver signature enforcement" before installing the driver.
  Once the driver is installed, it is listed under "devices USB of NI-VISA" in the Windows Device Manager. After that I can reactivate the driver signature enforcement, the unit will continue to work, even after a reboot.

  Alas, in the 64-bit version of Windows 8 is not as simple as that. Yes, you can temporarily disable driver signing enforcement, but not on computers that use 'secure boot' or UEFI.
  I know that there are ways to disable booting UEFI's secure, but I don't want that on our customers computers. It seems wrong, and could introduce a large number of security problems.

  The next logical step would be to sign the device driver. Our company has a valid kernel mode code signing certificate and we signed the other drivers with it in the past.
  The problem is that I don't know how to sign my device in the NI-VISA database driver. According to the .inf file it uses WinUSB.sys, a Microsoft USB generic driver (part of the Windows Driver Kit, I think).
  Winusb.sys is already signed by Microsoft and that I could replace the signature, but that probably won't work without some tweaking inf and generate a new catalog file.

  Can someone please give me some pointers on where to start? As a reference, I have attached one of the inf files for this post. This inf file works on Windows Vista and 7.

  It is even possible to create a signed driver based on NI-VISA raw?

  Thanks in advance for your help.

  Paul

  Here's a knockout who described workaround.

  http://digital.NI.com/public.nsf/allkb/36DB8D6AC385052786257A940066A421

  What you have written, you need to generate a catalog (.cat) of the inf file (as described in step 1 of the KB) and then sign the .cat with your certificate file, the same way you would sign your other components. The inf and CAT are always distributed together. The inf file contains information about the cat file that has the signature, and the cat file contains the signature information. Since you have already been distributing the components signed with your own certificate, I'm sure you can understand the process, but please let us know if you have any other questions.

  Thank you

  Pankaj

• two locks of laptop see the light as lock sign1 and lock signed and fully offshore

  Hello

  I have HP 6730 laptop computer b today, when I start it show me

  two locks light as ld (lock sign1) and (lock signed) and turns it off completely

  lock sign1 means a pic of lock with number 1

  average of locking signed a lock with a text pic

  It's not start all these two locks photo blick 2 times, then turns off completely another conduit of speakers and! and illustrated also box.

  No display at all.

  Please help what is this error?

  Thank you

  Those are the LEDs for shift caps lock and number lock. The fact that your computer does not come on and the lights flash means that the laptop trying to communicate an error code. See LED display empty Error Codes for more information.