Started by zapp, December 05, 2013, 06:45:07 AM
Quote from: zapp on December 05, 2013, 06:45:07 AMmy first question is: are these two files everything or are these different for each app?
Quote from: zapp on December 05, 2013, 06:45:07 AMif it is only two files, do you have a direct link I can get while PC is online then copy to SD on device and load it that way, is this possible?
Quote from: zapp on December 05, 2013, 06:45:07 AMnow about plop linux.. can a lite version be run on the ARM processors so it can be set to dual boot with android on a device? is that what flybook linux is?
Quote from: Elmar on December 05, 2013, 08:23:36 AMthose two files are googles certificate files for apps when the developer didn't create an own certificate. the certificate is not app based. basically, the test certificate should be used only during the development process and not in released apps. but the test certificate is a valid certificate and can be used to sign apps and those apps are accepted by android. you have to know that the resigning with the test certificate is also a security risk. because the original secure certificate is broken and a bad app is able to add code to the app and resign it with the free available test key. to avoid this, its possible to create an own certificate and let the permission remover sign the apps with your certificate. but its easier for users to use the test certificate. there are also other things that can make problems. see http://www.plop.at/en/android/permission-remover.html#permrem_tech
Quote from: Elmar on December 05, 2013, 08:23:36 AMyou can search and find the files with google. but here are direct linkshttps://github.com/CyanogenMod/android_build/raw/gingerbread/target/product/security/testkey.pk8https://github.com/CyanogenMod/android_build/raw/gingerbread/target/product/security/testkey.x509.pemjust copy the files to /sdcard/at.plop.PermissionRemover/keyand the permission remover no longer needs internet access
Quote from: Elmar on December 05, 2013, 08:23:36 AMthe flybook is meanwhile an old small laptop with an i686 processor. it was a nice piece of hardware with a touchscreen an so on. the flybook linux is only some kind of optimized for the flybook.i started compiling a fresh version of plop linux. but currently its interrupted. release will be maybe 01/2014. till now, i didn't thought about an ARM version, but now i think about it but i dont say that it will come. if i release an ARM version, then maybe it can be used for dualboot.
Quote from: zapp on December 06, 2013, 04:09:51 AMI will keep checking in every now and then and hope to see the movie and Plop-Linux w/ARM support.thanks Elmar and if I dont get a chance before the time comes then I will write to you now wishing you and yours a great New Year!
Quote from: TheDrive on September 15, 2015, 09:20:53 AMSad to hear many users trust to the Google but don't trust to you, the man, who's brilliant apps they can explore in sources.
Quote from: TheDrive on September 15, 2015, 09:20:53 AMWhy there is no desktop version of your app? If you're explored and have readymade procedure to parse and edit Manifest binary sructure ther should be no problem to port PR to PC (console version should be enough).
#!/bin/shCERT="../testkey.x509.pem"PKEY="../testkey.pk8"TMPPKEY="tmppkey"OUT="META-INF/CERT.RSA"echo creating $TMPPKEYopenssl pkcs8 -inform DER -nocrypt -in "$PKEY" -out "$TMPPKEY"echo creating $OUTopenssl smime -in "META-INF/CERT.SF" -sign -inkey "$TMPPKEY" -signer "$CERT" -binary -outform DER -noattr -out "$OUT"echo removing $TMPPKEYrm "$TMPPKEY"
Quote from: TheDrive on September 15, 2015, 09:20:53 AMBTW Why don't you have official account on XDA-developers?
Quote from: Elmar on September 15, 2015, 20:48:57 PMI have no problem with that. I understand them, a single person can do also bad things and not all of my software is released as open source.
Quote from: Elmar on September 15, 2015, 20:48:57 PMIt's easy to sign it on a desktop. There is already a java program. You only need openssl, java and the program apksign.jar.Example: java -jar signapk.jar certificate.pem key.pk8 app.apk app-signed.apkIts also possible to do it by hand without java. You have to create a new META-INF/CERT.RSA file with openssl and then zip the apk.
Quote from: Elmar on September 15, 2015, 20:48:57 PMI didn't use it for years. Meanwhile, the PermissionRemover is a few years old.
Quote from: Elmar on September 15, 2015, 20:48:57 PMHave fun, maybe you or someone else find it useful
Quote from: Elmar on September 15, 2015, 20:48:57 PMI registered an account in 2012, but I never used it.
Quote from: Elmar on September 15, 2015, 20:48:57 PMNice to hear that people like my work
Quote from: TheDrive on September 17, 2015, 15:13:12 PMWe should also edit binary Manifest!I didn't explored it's binary structure... Tought you've... To be clear for all I should point Mafinfest.xml doesn't have any text XML format inside, it contains binary data with some unicode strings.