Nightmare of code signing

Similar Questions

• Code sign VISA raw driver USB for Windows 8

  Hi guys,.

  I wrote a LabVIEW program that communicates with a measuring using NI-VISA (class raw USB) USB device.
  With the development of Driver NI-VISA Wizard, I created two .inf files of drivers (for XP/2000 and 7/Vista).
  It works like a charm on my computer (Windows 7, 64-bit) and on the computers running Windows XP and 32-bit versions of Windows Vista and 7.
  I also have to work on 64 bit versions of Windows Vista and 7 using "disable driver signature enforcement" before installing the driver.
  Once the driver is installed, it is listed under "devices USB of NI-VISA" in the Windows Device Manager. After that I can reactivate the driver signature enforcement, the unit will continue to work, even after a reboot.

  Alas, in the 64-bit version of Windows 8 is not as simple as that. Yes, you can temporarily disable driver signing enforcement, but not on computers that use 'secure boot' or UEFI.
  I know that there are ways to disable booting UEFI's secure, but I don't want that on our customers computers. It seems wrong, and could introduce a large number of security problems.

  The next logical step would be to sign the device driver. Our company has a valid kernel mode code signing certificate and we signed the other drivers with it in the past.
  The problem is that I don't know how to sign my device in the NI-VISA database driver. According to the .inf file it uses WinUSB.sys, a Microsoft USB generic driver (part of the Windows Driver Kit, I think).
  Winusb.sys is already signed by Microsoft and that I could replace the signature, but that probably won't work without some tweaking inf and generate a new catalog file.

  Can someone please give me some pointers on where to start? As a reference, I have attached one of the inf files for this post. This inf file works on Windows Vista and 7.

  It is even possible to create a signed driver based on NI-VISA raw?

  Thanks in advance for your help.

  Paul

  Here's a knockout who described workaround.

  http://digital.NI.com/public.nsf/allkb/36DB8D6AC385052786257A940066A421

  What you have written, you need to generate a catalog (.cat) of the inf file (as described in step 1 of the KB) and then sign the .cat with your certificate file, the same way you would sign your other components. The inf and CAT are always distributed together. The inf file contains information about the cat file that has the signature, and the cat file contains the signature information. Since you have already been distributing the components signed with your own certificate, I'm sure you can understand the process, but please let us know if you have any other questions.

  Thank you

  Pankaj

• Process * \MCSHIELD. EXE the nest (428) contained code signed or corrupted and could not perform an operation with a McAfee driver.

  XP SP3 system

  I get warnings like this when Mcafee updates.

  Process * \MCSHIELD. EXE the nest (428) contained code signed or corrupted and could not perform an operation with a McAfee driver.

  Process * \SVCHOST. EXE the nest (1632) contained code signed or corrupted and could not perform an operation with a McAfee driver.

  Is this a problem Microsoft or Mcafee?

  Do I need to fix?

  In the McAfee forums, there are several similar positions such as:

  https://community.McAfee.com/message/241542

  I'll sue your question on in their community, as they already seem to know about it.

  I would also say that, unless you are very fond of McAfee or you are forced to use it, you plan to replace it with something that has a smaller footprint, uses less resources and doesn't have these problems - something like Microsoft Security Essentials, you can get here:

  http://Windows.Microsoft.com/en-us/Windows/Security-Essentials-download

  MSE completed with the free version of MBAM and SAS should permanently keep your clean enough unless you're a daredevil like me:

  Download, install, update and do a quick scan with these free malware detection programs (not at the same time) and remove all threats:

  Malwarebytes (MMFA): http://www.malwarebytes.org/products/malwarebytes_free
  SUPERAntiSpyware: (SAS): http://www.superantispyware.com/

  SAS will probably report a lot of tracking cookies and you can just let him delete them.

  Even if you keep McAfee, I always supplement it with MBAM and SAS since no single AV program does seem to know everything.  If your McAfee of your system is clean, I would interpret that means - McAfee found nothing, says he knows.  It is prudent to use more than a reputable scanner to get more coverage.

  If you choose to spend (and you can't have both at the same time), you must be sure to use the uninstaller that you can get from here:

  http://service.McAfee.com/FAQDocument.aspx?LC=1033&ID=TS101331

  Your system will give you better performance.

• Code signing request has failed because the service is temporarily unavailable

  cannot create debug token today. still not to print the message: Code signing request has failed because the service is temporarily unavailable. What is happen?

  Service has been done.
  http://supportforums.BlackBerry.com/T5/BlackBerry-world-development/app-signing-server-down/m-p/2669...
  Try again.

• Unity3D code signing issue

  Hello everyone, I'm new here.

  I just tried to get the keys to a game from the signature.

  I got the csk file, but no email with SJC files didn't follow.

  Is there something that I am missing?

  Unity3D requires files from the csj to sign for BB10.

  Can someone help with the process, please?

  The file bbidtoken.csk is a BlackBerry ID token, which is our new method for signing.

  You can still use the previous method used (files CSJ) code signing keys.  You can get them using this form: https://www.blackberry.com/SignedKeys/codesigning.html

  Choose the second option, which is: "For PlayBook apps BlackBerry BlackBerry 10 apps development using a 10.1 SDK or lower or SDK WebWorks BlackBerry 10 below 2.0."

• Lost the ability to create tokens of debugging: error: Code signing request has failed because the value debug token of Type Package is not allowed.

  I have been a token of debugging and apps on my device Z10 hundreds of times from the command line and Momentics but this time I am confused.

  I am trying to create a token of debugging (in command line and Momentics) and deploy it in my Z10 camera, but it does not work.   In both cases, I get the following error.

  "Error: Code signing request has failed because the value debug token of Type Package is not allowed."

  2 things have happened recently that make this potentially different situation.

  a.) now my device is currently running OS 10.2

  (b) there was something new regarding signing apps with your blackberry ID?

  I was a little out of the loop for 1-2 months so please forgive me if this problem is very obvious... I am looking for a clue to what I'm doing wrong.

  This has been fixed on both of your accounts.  It was a problem of account setup.  We're looking at what caused it to prevent it from happening in the future.

• Unable to connect BAR file "error: Code signing request failed because it cannot be recorded.»

  Hello

  I'm trying to sign the BAR file generated from the apk files, but I got this error:

  Error: Code signing request has failed because it cannot be recorded. Package-Version-Id [gYACgLU-GLg8YtNMuWU17-BoxsM], [gYAEgM4XsG9ppojbj3zOO9gg-Nc], Id [2189468] Client Application-Version-Id.

  I tried to redownlowd the file CSK again and again, did a lot of things but not luck.

  Thank you for sending via manifest file.  The error is caused by the name of the application you are using.  There is a limitation of the number of characters that can be used for an application name.  The number of characters will vary according to the type of encoding used, in this case it would be 7.

  The workaround for this solution, use our tool is to define an application name by default using Latin based on characters and then add names localized for each supported language.  These localized names do not have this limit.  For comparison, here's how it's done using BlackBerry Momentics: How to define an Application as the characters name Unicode requires the default name would only be used if a localized name is not available for the language of the user.

  Android also supports localized names of applications, so the similar process should work there too.

• Code Signing - different version of the JDE

  I'm back-porting an application 4.2 to 4.0. I copied the files sigtool directory 'bin' JDE 4.2 in the 'bin' JDE 4.0 directory. However, when I try to sign the COD files, the operation fails. The 'detail' says:

  "The signature on the request of code signing did not check.  The probable cause of this problem is entered an incorrect password. »

  The password is correct and checked several times. There is another reason for this failure? Am I missing a step when you move files sigtool 4.2 back to 4.0?

  The original JDE (the application was developed on) is 4.2.1. One where I am signing is 4.0.2.

  This link explains the changes in version 4.3.0.  It is the only version of the Pack BlackBerry JDE/component where the format of these files has changed.

  What's – the Signature key format changes in BlackBerry JDE 4.3.0
  Article number: DB-00639

  http://www.BlackBerry.com/knowledgecenterpublic/livelink.exe/fetch/2000/348583/800738/800989/What_Is...

• Code signing error

  Hello

  I have this quite annoying error for my blackberry 5.0 application. Most of the methods and classes of RIM is display code signing errors when I'm clearly registered my app and the app runs on my camera as well. I'm unable to retrieve all the data from my db but I am able to write data to my db. Help, please.

  Thank you & best regards

  Vishnu pascalp

  OK I got the problem. The .cod file was not have written... its working fine now.

  Thanks for the help.

• Problem with WebInspector: error: Code signing request failed car-development-Application Mode in the East of the demo is present and is not set [false].

  Hi, I have a problem running the webinspector on my dev alpha.

  Whenever I have create bar folder with the d flag, and then run the signature tool, I got the error message:

  Error: Code signing of the petition failed because Application-Development-Mode demo
  is is present and not set [false].

  How to solve this problem? If I generate the .bar without the flag - d, can I sign and execute on the device, but without web Inspector

  I found the error

  I just had to use the indicator g in bbwp and set my password

  and not reuse bbwp and then the signing tool

• problem on mac code signing

  Currently, I just have a problem concerning the signing of the app using webworks api for playbook.

  In particular, I already could package it in a bar in the file but just cannot sign.

  I followed all the instructions to

  1. http://docs.blackberry.com/en/developers/deliverables/23977/Configure_signing_for_tablet_application...

  2. http://docs.blackberry.com/en/developers/deliverables/23977/Sign_the_cod_file_for_a_BB_Widget_applic...

  And it seemed that I have successfully registered my account because I have the following message in my mailbox:

  An application for registration is completed successfully for the customer "xxx".  The client left or code xxx signing requests.

  The customer has returned the following message is displayed:

  Customer "xxx" registered successfully with the server ID RDK signature and now attempts remaining xxx code signing.

  Then when I run the command:. / bbwp ~/Dropbox/Interceptr.zip /gcsk /gp12 123456 123456 /buildId 1/o/Users/xxx/Desktop (I replaced my real pass in this email with string 123456)

  I had the rest of the console message:

  [INFO]       Parsing of the command line options

  [INFO]       Bbwp.properties analysis

  [INFO]       Validation of archive WebWorks

  [INFO]       The analysis of config.xml

  [WARNING]   Cannot find an element of

  [INFO]       The application of filling source

  [INFO]       Compiling applications WebWorks

  [INFO]       Packaging of the record bar

  [INFO]       Bar complete packaging

  [INFO]       Start signing tool

  error barsigner: developer certificate and private key not found in the keys file or store the password not supplied

  [ERROR]     Signature failed

  and using blackberry-signatory gives the same result:

  . / blackberry-sign-verbose - cskpass 123456 - keystore sigtool.p12 - storepass 123456 ~/Desktop/Interceptr.bar RDK

  error barsigner: developer certificate and private key not found in the keys file or store the password not supplied

  I wonder if anyone has any ideas on this subject?

  Here are the exact steps I followed. I tried twice and havn't seen the questions either WinXP or Win7

  updating PATH env variable to add all the paths to the tools

• Page of code signing does not work

  The steps:

  (1) open the URL with IE 8: https://www.blackberry.com/SignedKeys/nfc-form.html

  (2) select "I wish a device Code signing key.

  (3) fill in all information

  4) click the button 'send '. The demand is not there and get an error "Please ensure that all required fields are filled."

  Does anyone have a solution for this?

• Code signing Server

  Where can I see the health of the code signing feature? My signature attempts have failed since Saturday. I just tried there and the service still not answering any request for signature.

  Note that the problem with JDK 7.0 and the SignatureTool has been fixed in BlackBerry Java SDK 7.1.  You can find the details here: http://supportforums.blackberry.com/t5/Testing-and-Deployment/SignatureTool-Stops-Responding-While-S...

• Reuse of code signing on more than one computer keys

  Hello

  I'm moving my code signing keys to a machine with JDE 4.2.1 to another computer running JDE 4.1.0.

  Is this possible?  I copied my files sigtool.csk and sigtool.db.  But, when I try to sign a .cod file, it gives me an error of password - and I know that the password is correct.

  Of course, I could generate a new key pair and pay $20 to get signature for her keys, but I should be able to copy my keys autour, right?

  Someone else has been able to copy successfully their signature on another key machine?  I need to downgrade from JDE 4.2.1 to 4.1.0 - keys are not backward compatible through JDE versions and their corresponding SignatureTool.jar?

  Help, please!  :-)

  Using signature on several PC keys is not supported.  If you want to move your signing keys from one PC to another, you can contact [email protected] who can send you a set of replacement of csi files, that you can install on the new PC.  Note that this process invalidates your keys.

• Signature without using Code code signing authority of signatory to basic password file

  I'm trying to restrict access to a store of PersistentObject using code signing. I created the public/private key pair and I also have my. KEY file. When I do following step it work very well:

  • Sign your application using your code signing key standard issued by Research In Motion.
  • Sign that these signed .cod files with the application file signatory in the administration of BlackBerry signature tool.

  But I want to design a signature tool automated using ant tasks.  I am unable to find corresponding Ant task to call the file signing tool.

  Anyone know how to get the code signing to work without using the JDE?

  Thanks in advance

  you need a server to use this signature signature. AFAIK, you sign your apps as before, just with your own signature added server.