Reputation: 1473
How to use pem file to sign jar?
I just got my Code Signing Certificate from CERTUM. It contains *.pem (text file) and *.cer (binary file). I want to sign now my jar file. I am absolutely new in code signing. I found that I should to use jarsigner, but I don't know how I can use my *.pem file now. All examples which I've found is about using another types of file.
Can you provide me step-by-step description of how I can sign my jar by pem file? Thanks a lot.
Upvotes: 2
Views: 2347
Answers (1)
Reputation: 26
it may be necessary to convert the *.pem files with openssl. if that's true, look up the manpage of openssl.
then proceed by creating a keystore with the
keytoolcommand that comes with java, IIRCafter creating the keystore sign the aforementioned jar-file with the command
jarsignercheck if everything worked as expected by inspecting the contents of the signed jar-file via:
jar -xvf $jar-file; cd META-INF; cat MANIFEST* *.RSA *.SFor alternatively viajarsigner -verbose -verify -certs $path/to/jar-file
huh, that was step-by-step, but quite terse. but it should get you going (in the right direction...)
Upvotes: 1
Related Questions
- How to sign a JAR file using a .PFX file
- How do I create or extract the certificate from a signed jar file
- How to change Key store or trust store to .pem file
- Java Sign jars with server certificate
- Can I sign .exe files using .spc and .pem files?
- Converting PEM file to PKCS8 programmatically
- Sign jar with certificate but without private key
- sign a Jar file
- How to verify PEM format certificate in Java
- How to use PEM file to create a SSL socket in Java?