Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Sign a launch4j executable in ant with sign4j and jsign

Tags:

ant

sign

launch4j

I have an application in a Jar and I wrap it in a exe with launch4j so is easy for the user to launch it (in windows). I have a certificate, so I sign the jar (I don't know if this is really necessary because it will be wrapped inside the exe) and I want to sign the exe but it corrupt the executable.

I use ant to make all the process and look like:

<signjar jar="${jar.location}" alias="${key.alias}" storetype="pkcs12" keystore="${key.file}" storepass="${key.password}" tsaurl="https://timestamp.geotrust.com/tsa" />

<launch4j configFile="launch4j_configuration.xml" fileversion="${version}.0" txtfileversion="${build}" productversion="${version}.0" txtproductversion="${build}" outfile="${exe.location}" jar="${jar.location}" />

<signexe file="${exe.location}" alias="${key.alias}" storetype="pkcs12" keystore="${key.file}" storepass="${key.password}" tsaurl="http://timestamp.verisign.com/scripts/timstamp.dll" />

I have found that is because when you sign the exe it broke the jar structure or something like this. But what I have also seen is that inside the launch4j folder is a sign4j folder that contains what I think is a program that solve this problem.

My problem now is how is used this program? And how can I integrate it in the ant script to sign the exe?

The README.txt file in the folder doesn't helped to me. Sorry if this so obvious but isn't clear for me. Also note that I'm using Ubuntu.

like image 304
PhoneixS Avatar asked Mar 11 '14 11:03

PhoneixS

1 Answers

What I have found is that you must execute the sign4j command with the signing command as its argument. Something like:

sign4j jsign -s keyfile.p12 -a "(codesign_1091_es_sw_kpsc)" --storepass AVERYGOODPASSWORD --storetype pkcs12 -n MyProgram -u https://www.example.com MyProgram.exe

So, to integrate it into ant, you need to create an exec task. For example, something like:

<exec executable="sign4j">
  <arg line="java -jar jsign-1.2.jar -s ${key.file} -a ${key.alias} --storepass ${key.password} --storetype pkcs12 ${exe.location}"/>
</exec>

It works also with other signing tools like for example authenticode from Microsoft, too ...

<exec executable="launch4j/sign4j/sign4j.exe">
    <arg line="signtool.exe sign /fd SHA256 /f mycert.pfx /p foobar /t http://timestamp.verisign.com/scripts/timstamp.dll dist\myapp.exe"/>
</exec>
like image 87
PhoneixS Avatar answered Nov 24 '22 16:11

PhoneixS
Sign in to Comment

Related questions

Ionic build android not working on package-resource
Why JUnit 4.11 is not working in Ant build file, but JUnit 4.8.2 is working fine?
Increase the maximum number of javadoc warnings when compiling with Ant
warning: unmappable character for encoding ASCII [duplicate]
Ant build won't run in Eclipse
How to build an ant target conditionally on Snow Leopard
How to iterate a list of files and apply a command on each?
How can I delete files in a directory which are copied from another directory?
Combining JS and CSS files as part of build
How to specify a global system property for java applications?
Cannot resolve symbol 'scp' in IntelliJ IDEA 11 Ant build script
JUnit & Ant : How to show detailed error message on the screen?
Testing a project that uses ActionBarSherlock
Calling foreach in maven-antrun-plugin
SpringJUnit4ClassRunner with JUnit testsuite error
What‘s the difference between ant's property value and property location
Ant wsimport task failing
Annoyance running Ant build in IntelliJ IDEA
Deploying web app using Ant results in NoClassDefFoundError
ANT JDBC driver [com.mysql.jdbc.Driver] could not be loaded?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!