Hello,
I translated into French some exe and dll from OEM drivers (like backlight, power, WLan settings,...), so I had to sign them to get them working on my device.
I signed those files using a priviledged developer certificate and it works well as my device allows programs using this priviledged certificate. But it would be better if I could sign them using the original OEM certificate. Is it possible?
I have OEM.crt but I don't know if I can do anything to use it for signing files.
Thanks for your answers
Wouldn't we all like that (this would help freeware / ROM development a lot)
Unfortunately, unless you work directly with the OEM your chances of getting anything signed by their certificate are less then 0.
Since you already signed files you know that you need a PVK file (the key to the certificate) and a password.
(Developer cert probably does not have a password, but all real certificates do)
The cer file by it self won't let you do anything except see who issued it.
levenum said:
Wouldn't we all like that (this would help freeware / ROM development a lot)
Unfortunately, unless you work directly with the OEM your chances of getting anything signed by their certificate are less then 0.
Since you already signed files you know that you need a PVK file (the key to the certificate) and a password.
(Developer cert probably does not have a password, but all real certificates do)
The cer file by it self won't let you do anything except see who issued it.
Click to expand...
Click to collapse
Yes it's what I thought, unfortunately...
Thank you for your clear answer!
Related
My universal is bought as an normal PPC - and it is not midified in any way by any operator.
I can install "anything" on it.
I downloaded a program , it run fine, I replaced the program's exe file with an modified version, and I get "the file '...' cannot be opened. Eighter it is not signed with a thrusted certificate, or one of it's components cannot be found. you might need to reinstall or restore this file."
replaceing the EXE with the original one works.
the same , modified exe worked on a WM2003SE device.
Try this file:
I believe it gets rid of the "Signed" security check
thank you .
i alredy tried this file, I found it under the name : Cert_SPCS.CAB
(on this forum)
The errormessage does not show up anymore, but the program does not run anyway..
the game is 3MB - if you want I can mail it to you
any other sugggestions?
Maybe it checks the file size whenever it is run so if you modified it, the file size is different so it wont run. What did you modify in the game anyway? What game is it?
It is "My Little Tank"
The modification is probaply only a one or a few bytes around the code that checks if it is registered or not - commonly known as "cracked EXE"
the same files worked fine on Wm2003SE
Sorry then, I can't help you there as I never have tried to crack any of my PPC programs....
If it is successful, drop me a line :wink:
Give me your mail and i will send you the good c r a c k ed mlt.exe file!
Give me your mail and i will send you the good c r a c k ed mlt.exe file!
Guys, noone is saint, but please, we're trying to keep that website free from that stuff. :evil:
There is plenty other forums to discuss about it.
true, I try not to make this forum a pace for this kind of stuff.
I am mostly interested in basicly being able to execute stuff whithout being controlled by M$
- AND -
by knowing few changed bytes seems to be detected by OS , (since the program itself did not detect it on WM2003SE) - thererfore - I see it as a possible way to a great performance boost .. If I/we find out how to disable this behavior.
[email protected]
thanks.
Yep, i am more interested on bypassing the check than getting the exe file. Thanks anyway for the offer.
Hi,
I've programmed a small MFC-based Visual c++ application which I want to start automatically on boot on an ARTEMIS device. The earlier the app starts, the better. Thus, rather than creating a shortcut in windows\Start up, I decided to add a registry entry into HKLM/init as "Launch90" "myApp.exe" The executable is placed in the /Windows directory.
But it does not start as expected, just occasionally. I got the impression that the application comes up only the second or third reboot (soft reset) after installing the CAB file. After other reboots, no indication why the application fails.
I have already tried to vary the number right to "launch" in the key, tried to set a dependency, set the MFC to static and to dynamic, but the application does not start. (by the way, it works well when adding a shortcut to the start up directory). I have no idea why it does not work with the registry approach. Do I have to consider something special for such kind of applications?
thanks in advance for any idea...
Gunther
Is it signed or authorized?
When you run your application your device asks you if it is OK to run because it is not signed (unless you disabled that in security settings).
If you answered yes once, it won't ask again.
However if you try to launch unsigned and unauthorized app from init it will just ignore it.
Another possibility is that your app is trying to access an unavailable resource (maybe something on storage card?) and crashes. Make sure everything it needs is available during init stage.
I guess the signing issue is one of the reason for the problems. I've in the meantime created an individual certificate, installed it on the device, and signed my application with that cert.
The behaviour improved: At most reboots, my application comes up as expected. But sometimes it does not. I just rebooted my device 5 times, 4 times it worked and once, launching the app failed. Another reboot again succeeded.
Do you think when launching the application with the reg setting "Launch95", it sometimes happen that the MFC DLL can not be accessed (it is linked during runtime)?
Create somewhere shortcut to execute your exe with one and only one parameter: "90"
Something like this:
Code:
0#\windows\myApp.exe 90
If app doesn't start - read this thread:
http://forum.xda-developers.com/showthread.php?t=302013
initlauncher may be method for vjtoggletoday missing tray..hmmm.
thx for that topic.
Thanks for the hints, but I'm still not satisfied with the outcomes. I've implemented the InitLauncher.exe (with slight modifications) and it works also with multiple reboots. But then I did a "hardcore test": I rebooted the device, InitLauncher.exe was executed and the second application came up. Then I've removed the battery. Since then it does not anymore work.
The certificate is still listed in the device, but could it be that something happened to the cert by killing the system? (For installing the cert, I simply copied the myCert.cer to the root directory and executed the cert installer by tapping the cer file.)
Or could the signature of the executable have been damaged? Any idea how to avoid such problems?
Addendum to my last post: I've now tried to re-install the Certificate on the device by again clicking the *.cer file - autostart worked again. Thus, I assume that something happened to the certificate on the mobile device. But the question is: WHAT happened...?
I recommend to you test all in emulator at first.
Or make hard reset and test on clear system.
I did a hard reset, re-installed the application and tested again. On warmstarts, it mostly works, but not everytime.
And there's another thing that puzzles me: When I create the CAB-Installer, all modules get signed using the signtool. If one of the modules is replaced (e.g. the replacement .exe is just copied to the device and overwrites the existing one), on first start the device always pops up a security warning as it does with unsigned apps, although the new exe has been signed as well.
Could this be caused by using a proprietary signature rather than one of the commercial pre-installed ones?
I furthermore used the signtool to sign the CAB file (I also tried to include the certificate through a pre-XML file when creating the CAB file) - however, this has no effect: Anytime the CAB is being executed on the device, the security warning pops up...
Possible you use wrong sertificate?
please show name of it.
Also don't forget to install certificate on device!
Basically, its a self-created certificate. The certificate is acutally installed on the device (copied the .cer file to the device and clicked it - it then shows up in the device's certificate list)
When signed applications are manually started on the device there is no security warning. Thus, I assume that the signature of the executables and the installed cert match.
Again back to the start-up problem: When using user-created certificates and when autostarting apps through HKLM/init: Do these apps have to wait for another module to be loaded first?
Không vào được màn hình Home của DVD trên xe hơi chạy winCe 6.0. Xin giúp đỡ.
Hello friends !
I'm living in Vietnam
I recently accidentally reinstalled the system of the DVD in the car.
Run operating system win CE 6.0
Now it's time to start it straight into win without going to the default home screen of your head. I've been able to understand but can not do anything else to make the situation better. Currently the new room is not possible.
Can you just help yourself to boot it (the app home line is: \ Residentflash2 \ app \ home.exe).
I hope you help me. You can instruct yourself how and if any editing software. I would like to thank !
Email: [email protected]
---------- Post added at 07:59 PM ---------- Previous post was at 07:56 PM ----------
Hello friends !
I'm living in Vietnam
I recently accidentally reinstalled the system of the DVD in the car.
Run operating system win CE 6.0
Now it's time to start it straight into win without going to the default home screen of your head. I've been able to understand but can not do anything else to make the situation better. Currently the new room is not possible.
Can you just help yourself to boot it (the app home line is: \ Residentflash2 \ app \ home.exe).
I hope you help me. You can instruct yourself how and if any editing software. I would like to thank !
Email: [email protected]
Hello friends ...I accidentally deleted the file \ Residentflash2 \ app \ home.exe . Any one can send me this file ? My double din not work any more .
Hello all. I am going to update my ROM, but have a quick question. My work email and calendar sync to my Mogul. Originally my works IT department had to install a certificate so I could sync. When I install the new ROM, I am betting this certificate will go away.
Is there anyway to backup the Certificates so I can reinstall them myself? I am not supposed to be on the exchange server per some stupid/outdated company policy but had a friend put me in there. I would like to not have to go back to IT as I don’t want to get anyone in trouble.
Thanks for the help.
I've exported HKCU\Comm\Security\SystemCertificates\.... into a cabfile and use this one after every new rom i'm flashing
and it's working very well.
If you export into reg-file and edit this file with an hex-editor you'll find your exchange certificate for sure. and under HKCU\Software\microsoft\ActiveSync you can find your Exchange settings (servername etc). after flashing a new rom the only thing i have to do is to enter my password and that's it....if you're unsure, you could try to import into an wince emulator and test if it's working the way you want....
hth
Problem with Exchange
I have been having challenges around Exchange. I am receiving emails and calendar correctly through the push.
When I reply to cal and emails. Multiple copies are being sent, sometimes up to 7.
Any ideas? Using 6.0 rom from FallingAngel, dcd first new rom. Have not tried 6.1 yet
petervbeck said:
I've exported HKCU\Comm\Security\SystemCertificates\.... into a cabfile and use this one after every new rom i'm flashing
and it's working very well.
If you export into reg-file and edit this file with an hex-editor you'll find your exchange certificate for sure. and under HKCU\Software\microsoft\ActiveSync you can find your Exchange settings (servername etc). after flashing a new rom the only thing i have to do is to enter my password and that's it....if you're unsure, you could try to import into an wince emulator and test if it's working the way you want....
hth
Click to expand...
Click to collapse
Peterv,
Sorry, quite a noobie. How do you export to cabfile ? What tool did u use ?
Cheers
fy
fylim said:
Sorry, quite a noobie. How do you export to cabfile ? What tool did u use ?
Click to expand...
Click to collapse
you could use dotfred's taskmanager for example (for PPC) or CERegeditor (for Windows Desktop) to export or import the registryentries.
Both tools are for free. Another solution could be SASHIMI which can also import registry files. Or you could create your own Mortscript, both are also for free.
if your ROM is supporting UC there is also a section for exchange (somewhere in the thread)
If you want to create a cab, WinCECabManager is easy, but not free.
hth
petervbeck said:
I've exported HKCU\Comm\Security\SystemCertificates\.... into a cabfile and use this one after every new rom i'm flashing
and it's working very well.
If you export into reg-file and edit this file with an hex-editor you'll find your exchange certificate for sure. and under HKCU\Software\microsoft\ActiveSync you can find your Exchange settings (servername etc). after flashing a new rom the only thing i have to do is to enter my password and that's it....if you're unsure, you could try to import into an wince emulator and test if it's working the way you want....
hth
Click to expand...
Click to collapse
HI Peter,
I tried exporting those reg keys out and after flashing my rom I managed to reimport them.
When I checked the certificates in Settings, they seem to be there. Checked Activesync settings, it is also there, however, when tried to sync, got this error
"The Microsoft Exchange Server requires a personal certificate to log on. Please obtain a certificate as directed by your corporation or service provider"
There was no option to key in password.
I had to re-enroll for a certificate going through my PC's WMDevice Center before able to sync with my Exchange server again.
So ... wonder whether I am still missing something that prevents me from restoring the certificates completely. Are there any physical certificate files that I need to back up as well ?
cheers
fy
fylim said:
So ... wonder whether I am still missing something that prevents me from restoring the certificates completely. Are there any physical certificate files that I need to back up as well ?
Click to expand...
Click to collapse
Bumpdibump, the same with me - although this is regarding a transfer from Rose to Polaris - this is the best post I have found so far...
Any luck on some specific files we need to copy in addition to the registry?
so i assume that the .cer used for the exchange server is no longer on the phone?
andason said:
so i assume that the .cer used for the exchange server is no longer on the phone?
Click to expand...
Click to collapse
I don't quite remember what happened, but for my part - not sure if the cer file was there, but it didn't help much anyway since whatever cer file I tried to validate with didn't work. I am looking into a different thread using rapiconfig to get the details from my phone, but I guess it ain't enough to only get the info from registry to get the darn thing to work.
Stuck...
hi
Im basically developing this titanium modification, it's already finalized and ready for cab'ing....ive tryed CE Cab manager, quikcab and they both succesfully build the cab perfect but when i go to install it i get the "installation has been unsuccesful because it is not digitally signed with a trusted certificate".....so how do I "sign" a cab?...ive installed sdcerts, ive tryed editing the xml/INF files and still no luck..ive tryed googled, looked thru the forums, n nothing....any ideas? ive attached the cab too
THNX!
usually it's sufficient to install sdkcerts followed by soft reset. however the original certificates expired on 31/12/09 so you need to make sure your sdkcerts contains the new certificates from 2010. I personally don't know about an updated sdkcerts and I installed the new certificates manually. they are available from microsoft. developers.windowsphone.com I think. and make sure to first remove ALL of the old ones, otherwise it won't work.
Download the new certificates here: http://htcpedia.com/news/new-certificates-out-for-windows-mobile-developers.html
Is there a cab with these updated certificates anywhere?
well i signed the two files that needed to be signed so you should be good to go on the install...also here is the signer program to do so in the future...
I have msigner with the updated certificates. The problem I am running into is in getting the certificates on my phone. I have tried to install manually, I have tried to delete and reinstall. But when I move a signed file to my phone it is not recognized. The sdkcerts file appears to have the certificates that expired 12/31/2009.
I have searched high and low, asked just about everywhere and cannot find a cab for the new certificates.
bboyle said:
I have msigner with the updated certificates. The problem I am running into is in getting the certificates on my phone. I have tried to install manually, I have tried to delete and reinstall. But when I move a signed file to my phone it is not recognized. The sdkcerts file appears to have the certificates that expired 12/31/2009.
I have searched high and low, asked just about everywhere and cannot find a cab for the new certificates.
Click to expand...
Click to collapse
Here ya go
jdmsleepr said:
well i signed the two files that needed to be signed so you should be good to go on the install...also here is the signer program to do so in the future...
Click to expand...
Click to collapse
WOW...you dont understand....THANK YOU!!!!!!!!!!!!!!!!!SO MUCH....like really thank you...
NilsP; said:
Here ya go
Click to expand...
Click to collapse
Thanks NilsP, i'll try this later today.
Double thanks, this works.
Doesn't one need a package called no cert also ?
Not sure what "no cert" is. unsigner works on most files. I have found a couple of dll's off of my Imagio that are not affected by unsigner though.
Hi.
Please trust, I use search of the forum enough, but have not found solution.
Main question:
"How do I get rid of the dialogue" Unknown Publisher "when establishing my own program on device?"
1. Registy Hack is not appropriate (except as the most extreme option)
2. Tried to create your own certificate based on it created pablisher certificate, and who signed the application. In devays set basic certificate. However, this had no effect .
It would be very grateful for the useful information on this issue.
Previously grateful
Oleg.
"Unknown Publisher"
Just use OS Builder, WM kitchen by Barin. you can set it to digitally sign the files.
goodluck,,,