- Forums
- Product Forums
- General Purpose MicrocontrollersGeneral Purpose Microcontrollers
- i.MX Forumsi.MX Forums
- QorIQ Processing PlatformsQorIQ Processing Platforms
- Identification and SecurityIdentification and Security
- Power ManagementPower Management
- MCX Microcontrollers
- S32G
- S32K
- S32V
- MPC5xxx
- Other NXP Products
- Wireless Connectivity
- S12 / MagniV Microcontrollers
- Powertrain and Electrification Analog Drivers
- Sensors
- Vybrid Processors
- Digital Signal Controllers
- 8-bit Microcontrollers
- ColdFire/68K Microcontrollers and Processors
- PowerQUICC Processors
- OSBDM and TBDML
- S32M
-
- Solution Forums
- Software Forums
- MCUXpresso Software and ToolsMCUXpresso Software and Tools
- CodeWarriorCodeWarrior
- MQX Software SolutionsMQX Software Solutions
- Model-Based Design Toolbox (MBDT)Model-Based Design Toolbox (MBDT)
- FreeMASTER
- eIQ Machine Learning Software
- Embedded Software and Tools Clinic
- S32 SDK
- S32 Design Studio
- GUI Guider
- Zephyr Project
- Voice Technology
- Application Software Packs
- Secure Provisioning SDK (SPSDK)
- Processor Expert Software
- MCUXpresso Training Hub
-
- Topics
- Mobile Robotics - Drones and RoversMobile Robotics - Drones and Rovers
- NXP Training ContentNXP Training Content
- University ProgramsUniversity Programs
- Rapid IoT
- NXP Designs
- SafeAssure-Community
- OSS Security & Maintenance
- Using Our Community
-
- Cloud Lab Forums
-
- Knowledge Bases
- ARM Microcontrollers
- i.MX Processors
- Identification and Security
- Model-Based Design Toolbox (MBDT)
- QorIQ Processing Platforms
- S32 Automotive Processing Platform
- Wireless Connectivity
- CodeWarrior
- MCUXpresso Suite of Software and Tools
- MQX Software Solutions
-
- Home
- :
- i.MX Forums
- :
- i.MX Processors
- :
- Does Android OS 10 support make with password-protected certificates?
Does Android OS 10 support make with password-protected certificates?
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Does Android OS 10 support make with password-protected certificates?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Environment:
The Android OS environment being used is as follows:
URL: https://www.nxp.jp/design/design-center/software/embedded-software/i-mx-software/android-os-for-i-mx...
Android Version: Android Q10.0.0_2.6.0 (Linux 5.4.70 kernel)
Objective:
We would like to create an environment where the NXP certificates located in the following folder are replaced with custom certificates:
(path/to/)/android_build/devices/fsl/common/security/
media, networkstack, platform, shared, testkey
and
releasekey (this one is custom-added)
Problem:
When we place a password-protected certificate and attempt to build, the following error occurs:
> java.lang.IllegalArgumentException: illegal object in getInstance: org.bouncycastle.asn1.DLSequence
> at org.bouncycastle.asn1.ASN1Integer.getInstance(ASN1Integer.java:44)
> at org.bouncycastle.asn1.pkcs.PrivateKeyInfo.<init>(PrivateKeyInfo.java:134)
> at org.bouncycastle.asn1.pkcs.PrivateKeyInfo.getInstance(PrivateKeyInfo.java:83)
> at com.android.signapk.SignApk.readPrivateKey(SignApk.java:277)
> at com.android.signapk.SignApk.main(SignApk.java:1091)
Note: This issue does not occur if the certificate is not password-protected.
Question 1:
In the Android make process, there is no prompt for password input. How should the password be set?
Question 2:
We believe that the prebuilt JDK 9 does not support password-protected certificates.
Has it been confirmed that JDK 9 can be used to build with password-protected certificates?
Or should we assume that Android Q10.0.0_2.6.0 (Linux 5.4.70 kernel) does not support password-protected certificates?
When I sign an apk with a passworded certificate with sign_target_files_apks after making with a non-passworded certificate, I get a prompt for a password.
However, the same error occurs when the password is entered.
This seems to occur when using a pre-built JDK 9, and it is believed that JDK 9 does not support password-protected certificates.
In the Android OS build steps, JDK 9 is set in the path when running source build/envsetup.sh.
Thus, we believe that using JDK 9 is the correct approach.
When using JDK 19 installed on a PC to run sign_targetfiles_apk, this issue does not occur.
