Comments on: How to Sign a MIDlet http://www.dijexi.com/2009/12/how-to-sign-a-midlet/ free programming tutorial, tips and tricks on php, codeigniter, delphi, dotnet, ajax and more.. Thu, 02 Feb 2012 12:16:36 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: David http://www.dijexi.com/2009/12/how-to-sign-a-midlet/comment-page-1/#comment-1181 David Mon, 29 Nov 2010 17:40:16 +0000 http://www.dijexi.com/2009/12/how-to-sign-a-midlet/#comment-1181 Hello: I have a Thawte certificate (299$) and I want to sign my MIDlet. My app has one permission: javax.wireless.messaging.sms.send. First scenario: I use Netbeans. If I try to sign my MIDlet, only the .jad file changes. Netbeans adds the following lines: MIDlet-Certificate-1-1: MIIEJjCCAw6gAwIBAgIQHJqq1asymZ........ MIDlet-Certificate-1-2: MIIEnDCCA4SgAwIBAgIQR5dNeHOlv...... MIDlet-Certificate-1-3: MIIERTCCA66gAwIBAgIQM2VQCH.... If I try to install this MIDlet sending the jad and the jar files throught Bluetooth, the installation goes ok. The app is secure. But if I try to send a SMS, (I push a "Send" command in a Form) the SMS is not sent. Nothing happens!!! No errors or exceptions, nothing, but if the MIDlet is not signed, the app can send the SMS well. The second scenario: I try to install the application using only the .jar file. I sign my application with jarsigner: jarsigner -tsa https://timestamp.geotrust.com/tsa -keystore Keystore.p12 -storetype pkcs12 MyMIDlet.jar myalias Doing this, the jar file increases it size. I can see inside the META-INF folder, inside the jar file, that: 1. The Manifest file has several digest. One for each file inside the jar: Manifest-Version: 1.0 bla bla bla... Name: res/icon.png SHA1-Digest: NFzSgJ9d8aHy/v4thNG+sMAhNiQ= Name: etc... 2. I have two new files: myalias.SF and myalias.RSA But if I try to install this jar I obtain an error message: The application is not trusted! Help!! Hello:

I have a Thawte certificate (299$) and I want to sign my MIDlet. My app has one permission: javax.wireless.messaging.sms.send.

First scenario:

I use Netbeans. If I try to sign my MIDlet, only the .jad file changes. Netbeans adds the following lines:

MIDlet-Certificate-1-1: MIIEJjCCAw6gAwIBAgIQHJqq1asymZ……..
MIDlet-Certificate-1-2: MIIEnDCCA4SgAwIBAgIQR5dNeHOlv……
MIDlet-Certificate-1-3: MIIERTCCA66gAwIBAgIQM2VQCH….

If I try to install this MIDlet sending the jad and the jar files throught Bluetooth, the installation goes ok. The app is secure. But if I try to send a SMS, (I push a “Send” command in a Form) the SMS is not sent. Nothing happens!!! No errors or exceptions, nothing, but if the MIDlet is not signed, the app can send the SMS well.

The second scenario:

I try to install the application using only the .jar file.

I sign my application with jarsigner:

jarsigner -tsa https://timestamp.geotrust.com/tsa -keystore Keystore.p12 -storetype pkcs12 MyMIDlet.jar myalias

Doing this, the jar file increases it size. I can see inside the META-INF folder, inside the jar file, that:

1. The Manifest file has several digest. One for each file inside the jar:

Manifest-Version: 1.0
bla bla bla…

Name: res/icon.png
SHA1-Digest: NFzSgJ9d8aHy/v4thNG+sMAhNiQ=

Name: etc…

2. I have two new files: myalias.SF and myalias.RSA

But if I try to install this jar I obtain an error message: The application is not trusted!

Help!!

]]>