how to recognize which .apk is signed with debug key
Question
I'm working with Android application developers. We need to recognize which APK package(.apk) is unsigned application package or signed application package. Also we would like to distinguish which signed APK package is signed by private key or signed by debug key. I know we could find these with Jarsigner tool. But we can't figure out that way. We have to find out with actual APK package(.apk file) which is generated by developers.
Here we found some clue. When we uncompressed the signed APK package then we found a foler(META-INF) and three files(CERT.RSA, CERT, MANIFEST.MF). When we open the CERT.RSA file with text editor, I could find the text, "Android Debug" in .apk was signed with the debug key.
So here is our question,
If I find the specific text, "Android Debug", then .apk is signed with the debug key.(correct or incorrect?)
If I uncompressed .apk and there is no CERT.RSA(*.RSA, I guess some case the file name is differnt) then .apk is unsigned. (correct or incorrect?)
Thank you for reading my question. I'm looking forward to the answer.
1 answers
solution1
1 2011-08-29 16:43:26
这两件事都是正确的(通常;您可以拥有一个名为Android Debug的密钥,它不是SDK调试密钥,但您必须试图破坏自己的目的)
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.