Logo Questions Linux Laravel Mysql Ubuntu Git Menu
 

Trying to refresh 'expired' keystore

I am trying to re-sign some jars using the ant task 'signjar' however it's telling me "The signer certificate has expired."

So I tried to re-generate the keystore hoping this would 'un-expire' it...

keytool -genkey -keystore mykeystore -alias myalias

but after entering the keystore password i get: "keytool error: java.lang.Exception: Key pair not generated, alias already exists"

what am i doing wrong? do i need to delete the keystore to re-generate it or is there a simple way to refresh it so it's not expired?

thanks.

like image 328
pstanton Avatar asked Jan 27 '11 23:01

pstanton


2 Answers

You're mixing up the terms. A keystore contains keys, a key is something used for signing.

AFAIK, you're trying to put a new key into an old keystore using an existing alias (name). Why don't you simply used a new one? Either this or delete the old key from the keystore first. You don't need to drop the whole keystore.

Have a look at portecle, this simple tool allows you to manipulate the keystore more easily.

like image 187
maaartinus Avatar answered Nov 07 '22 22:11

maaartinus


For this simply regenerate you certificate again follow these steps.

   1)keytool -genkey -v -keystore mycertificate.keystore -alias mykey -keyalg 
   RSA -keysize 2048 -validity 1000
   2)  jarsigner -verbose -keystore mycertificate.keystore D:\app.apk mykey
   3) jarsigner -verify app.apk
     If it  will have done then shows a message "successfully verified"
   4) zipalign -v 4 D:\app.apk D:\signedapp.apk

  it will generate new certificate. enjoy :)
like image 40
Tara Avatar answered Nov 07 '22 22:11

Tara