topic Sign Android images with new generated keys. in i.MX Processors https://community.nxp.com/t5/i-MX-Processors/Sign-Android-images-with-new-generated-keys/m-p/1088933#M159672 <HTML><HEAD></HEAD><BODY><P>We're trying to sign target files with our own keys (generated with the mkkeys.sh script, as described in the FAQ pdf ), but are getting an error:</P><BLOCKQUOTE class="jive_macro_quote jive-quote jive_text_macro"><P>rewriting BOOT/RAMDISK/default.prop:<BR /> replace: ro.bootimage.build.fingerprint=Android/var_mx6/var_mx6:8.0.0/1.0.0-ga/2020072402:user/dev-keys<BR /> with: ro.bootimage.build.fingerprint=Android/var_mx6/var_mx6:8.0.0/1.0.0-ga/2020072402:user/release-keys<BR />rewriting RECOVERY/RAMDISK/default.prop:<BR />rewriting RECOVERY/RAMDISK/prop.default:<BR /> replace: ro.bootimage.build.fingerprint=Android/var_mx6/var_mx6:8.0.0/1.0.0-ga/2020072402:user/dev-keys<BR /> with: ro.bootimage.build.fingerprint=Android/var_mx6/var_mx6:8.0.0/1.0.0-ga/2020072402:user/release-keys<BR /> replace: ro.build.display.id=1.0.0-ga dev-keys<BR /> with: ro.build.display.id=1.0.0-ga<BR /> replace: ro.build.tags=dev-keys<BR /> with: ro.build.tags=release-keys<BR /> replace: ro.build.description=var_mx6-user 8.0.0 1.0.0-ga 2020072402 dev-keys<BR /> with: ro.build.description=var_mx6-user 8.0.0 1.0.0-ga 2020072402 release-keys<BR /> replace: ro.build.fingerprint=Android/var_mx6/var_mx6:8.0.0/1.0.0-ga/2020072402:user/dev-keys<BR /> with: ro.build.fingerprint=Android/var_mx6/var_mx6:8.0.0/1.0.0-ga/2020072402:user/release-keys<BR /> signing: BasicDreams.apk (/home/nvilaca/.android-certs//platform)<BR />java.security.NoSuchAlgorithmException: 1.2.840.113549.1.5.13 SecretKeyFactory not available<BR /> at java.base/javax.crypto.SecretKeyFactory.&lt;init&gt;(SecretKeyFactory.java:122)<BR /> at java.base/javax.crypto.SecretKeyFactory.getInstance(SecretKeyFactory.java:168)<BR /> at com.android.signapk.SignApk.decryptPrivateKey(SignApk.java:238)<BR /> at com.android.signapk.SignApk.readPrivateKey(SignApk.java:261)<BR /> at com.android.signapk.SignApk.main(SignApk.java:1024)</P><P>ERROR: signapk.jar failed: return code 1</P></BLOCKQUOTE><P></P><P>Is it the way the keys are generated? Or something missing?</P><P></P><P>Ubuntu 18.04.1</P><P>OpenSSL 1.1.1&nbsp; 11 Sep 2018</P></BODY></HTML> Fri, 24 Jul 2020 17:12:27 GMT NunoVilaca 2020-07-24T17:12:27Z Sign Android images with new generated keys. https://community.nxp.com/t5/i-MX-Processors/Sign-Android-images-with-new-generated-keys/m-p/1088933#M159672 <HTML><HEAD></HEAD><BODY><P>We're trying to sign target files with our own keys (generated with the mkkeys.sh script, as described in the FAQ pdf ), but are getting an error:</P><BLOCKQUOTE class="jive_macro_quote jive-quote jive_text_macro"><P>rewriting BOOT/RAMDISK/default.prop:<BR /> replace: ro.bootimage.build.fingerprint=Android/var_mx6/var_mx6:8.0.0/1.0.0-ga/2020072402:user/dev-keys<BR /> with: ro.bootimage.build.fingerprint=Android/var_mx6/var_mx6:8.0.0/1.0.0-ga/2020072402:user/release-keys<BR />rewriting RECOVERY/RAMDISK/default.prop:<BR />rewriting RECOVERY/RAMDISK/prop.default:<BR /> replace: ro.bootimage.build.fingerprint=Android/var_mx6/var_mx6:8.0.0/1.0.0-ga/2020072402:user/dev-keys<BR /> with: ro.bootimage.build.fingerprint=Android/var_mx6/var_mx6:8.0.0/1.0.0-ga/2020072402:user/release-keys<BR /> replace: ro.build.display.id=1.0.0-ga dev-keys<BR /> with: ro.build.display.id=1.0.0-ga<BR /> replace: ro.build.tags=dev-keys<BR /> with: ro.build.tags=release-keys<BR /> replace: ro.build.description=var_mx6-user 8.0.0 1.0.0-ga 2020072402 dev-keys<BR /> with: ro.build.description=var_mx6-user 8.0.0 1.0.0-ga 2020072402 release-keys<BR /> replace: ro.build.fingerprint=Android/var_mx6/var_mx6:8.0.0/1.0.0-ga/2020072402:user/dev-keys<BR /> with: ro.build.fingerprint=Android/var_mx6/var_mx6:8.0.0/1.0.0-ga/2020072402:user/release-keys<BR /> signing: BasicDreams.apk (/home/nvilaca/.android-certs//platform)<BR />java.security.NoSuchAlgorithmException: 1.2.840.113549.1.5.13 SecretKeyFactory not available<BR /> at java.base/javax.crypto.SecretKeyFactory.&lt;init&gt;(SecretKeyFactory.java:122)<BR /> at java.base/javax.crypto.SecretKeyFactory.getInstance(SecretKeyFactory.java:168)<BR /> at com.android.signapk.SignApk.decryptPrivateKey(SignApk.java:238)<BR /> at com.android.signapk.SignApk.readPrivateKey(SignApk.java:261)<BR /> at com.android.signapk.SignApk.main(SignApk.java:1024)</P><P>ERROR: signapk.jar failed: return code 1</P></BLOCKQUOTE><P></P><P>Is it the way the keys are generated? Or something missing?</P><P></P><P>Ubuntu 18.04.1</P><P>OpenSSL 1.1.1&nbsp; 11 Sep 2018</P></BODY></HTML> Fri, 24 Jul 2020 17:12:27 GMT https://community.nxp.com/t5/i-MX-Processors/Sign-Android-images-with-new-generated-keys/m-p/1088933#M159672 NunoVilaca 2020-07-24T17:12:27Z Re: Sign Android images with new generated keys. https://community.nxp.com/t5/i-MX-Processors/Sign-Android-images-with-new-generated-keys/m-p/1088934#M159673 <HTML><HEAD></HEAD><BODY><P>Hello,</P><P></P><P>Which MPU are you running it at? -Anyway, the purpose of this is to sign OTA packages, for that, you will need to use the mkkey.sh script for generating the keys, but please remember that it will be required to be run 4 times (for each key) specifying the key name and password for each. The detailed description is addressed in chapter 29 of the following document:&nbsp;<A class="link-titled" href="https://www.nxp.com/docs/en/reference-manual/Android_Frequently_Asked_Questions.pdf" title="https://www.nxp.com/docs/en/reference-manual/Android_Frequently_Asked_Questions.pdf">https://www.nxp.com/docs/en/reference-manual/Android_Frequently_Asked_Questions.pdf</A>&nbsp;</P><P></P><P>Hope that helps!</P><P></P><P>BR,</P><P>Ivan.</P></BODY></HTML> Fri, 31 Jul 2020 18:59:54 GMT https://community.nxp.com/t5/i-MX-Processors/Sign-Android-images-with-new-generated-keys/m-p/1088934#M159673 IvanRuiz 2020-07-31T18:59:54Z