Cynosure.X International LLC

: : :

Add Comment | Related Links | TrackBack
Related Content

The apk must be signed with the same certificates as the previous version.

Got a new error today, while attempting to update the "Best Value" app, which was created with App Inventor. The error that Android Market reported was:

"The apk must be signed with the same certificates as the previous version."

My build process is automated and I've used the same certificate every time I build. I'm not sure what's the problem in this case.

Chieh Cheng
Mon, 04 Apr 2011 05:48:15 +0000

I have more information on this issue. The information is obtained by viewing and comparing the certificate information for Best Value 1.0 and Best Value 2.0. Output of the certificate is shown below:

Best Value 1.0

         346 Sat Nov 06 17:19:10 PDT 2010 META-INF/MANIFEST.MF
         467 Sat Nov 06 17:19:12 PDT 2010 META-INF/SOFTWARE.SF
        1169 Sat Nov 06 17:19:12 PDT 2010 META-INF/SOFTWARE.DSA
sm      3828 Sat Nov 06 17:39:46 PDT 2010 res/drawable/ya.png
      X.509, CN=Chieh Cheng, OU=Computer Science, O=Cynosure.X International, L=
Redlands, ST=California, C=United States
      [certificate is valid from 10/18/10 2:48 PM to 10/10/40 2:48 PM]
sm      2320 Sat Nov 06 17:39:46 PDT 2010 AndroidManifest.xml
      X.509, CN=Chieh Cheng, OU=Computer Science, O=Cynosure.X International, L=
Redlands, ST=California, C=United States
      [certificate is valid from 10/18/10 2:48 PM to 10/10/40 2:48 PM]
sm    2595560 Sat Nov 06 17:39:42 PDT 2010 classes.dex
      X.509, CN=Chieh Cheng, OU=Computer Science, O=Cynosure.X International, L=
Redlands, ST=California, C=United States
      [certificate is valid from 10/18/10 2:48 PM to 10/10/40 2:48 PM]
sm       588 Sat Nov 06 17:39:46 PDT 2010 resources.arsc
      X.509, CN=Chieh Cheng, OU=Computer Science, O=Cynosure.X International, L=
Redlands, ST=California, C=United States
      [certificate is valid from 10/18/10 2:48 PM to 10/10/40 2:48 PM]
  s = signature was verified
  m = entry is listed in manifest
  k = at least one certificate was found in keystore
  i = at least one certificate was found in identity scope
jar verified.

Best Value 2.0

         432 Mon Apr 04 00:48:48 PDT 2011 META-INF/MANIFEST.MF
         553 Mon Apr 04 00:48:48 PDT 2011 META-INF/SOFTWARE.SF
        1168 Mon Apr 04 00:48:48 PDT 2011 META-INF/SOFTWARE.DSA
smk    20160 Sun Apr 03 15:49:58 PDT 2011 assets/ted_Hexagon_background.png
      X.509, CN=Chieh Cheng, OU=Computer Science, O=Cynosure.X International, L=
Redlands, ST=California, C=United States (softwarebuild)
      [certificate is valid from 12/10/10 1:28 AM to 12/2/40 1:28 AM]
smk     3828 Sun Apr 03 15:50:10 PDT 2011 res/drawable/ya.png
      X.509, CN=Chieh Cheng, OU=Computer Science, O=Cynosure.X International, L=
Redlands, ST=California, C=United States (softwarebuild)
      [certificate is valid from 12/10/10 1:28 AM to 12/2/40 1:28 AM]
smk     2384 Sun Apr 03 15:50:10 PDT 2011 AndroidManifest.xml
      X.509, CN=Chieh Cheng, OU=Computer Science, O=Cynosure.X International, L=
Redlands, ST=California, C=United States (softwarebuild)
      [certificate is valid from 12/10/10 1:28 AM to 12/2/40 1:28 AM]
smk   2663908 Sun Apr 03 15:50:08 PDT 2011 classes.dex
      X.509, CN=Chieh Cheng, OU=Computer Science, O=Cynosure.X International, L=
Redlands, ST=California, C=United States (softwarebuild)
      [certificate is valid from 12/10/10 1:28 AM to 12/2/40 1:28 AM]
smk      588 Sun Apr 03 15:50:10 PDT 2011 resources.arsc
      X.509, CN=Chieh Cheng, OU=Computer Science, O=Cynosure.X International, L=
Redlands, ST=California, C=United States (softwarebuild)
      [certificate is valid from 12/10/10 1:28 AM to 12/2/40 1:28 AM]
  s = signature was verified
  m = entry is listed in manifest
  k = at least one certificate was found in keystore
  i = at least one certificate was found in identity scope
jar verified.

From these information, we see that the only difference is the date that the certificate is generated on and the date that it expires. I had swapped out the hard drive on this development computer, therefore, regenerated a new certificate with the same information.

In hindsight, every time you generate a new certificate, you should automatically export it to a file and store the digital certificate with your source files for the apps.

I did not do that, because I did not realize the Android Market expect the EXACT same certificate from one version of your app to another. So at this time, I am investigating methods to recover digital certificates.

Chieh Cheng
Mon, 04 Apr 2011 21:42:06 +0000

Add Comment | Related Links | TrackBack
Related Content

Did your message disappear? Read the Forums FAQ.

Add Comment

Spam Control | * indicates required field
Your Name: *
E-mail:
Remember Me!
Comment: *
File attachment is optional. Please do not attach a file to your submission unless it is relevent.
Attach File:
(20 MB Max)
Spam Protection: * Answer of 8 + 0?
Click button only once, please!

TrackBack

TrackBack only accepted from WebSite-X Suite web sites. Do not submit TrackBacks from other sites.

Send Ping | TrackBack URL | Spam Control

No TrackBacks yet. TrackBack can be used to link this thread to your weblog, or link your weblog to this thread. In addition, TrackBack can be used as a form of remote commenting. Rather than posting the comment directly on this thread, you can posts it on your own weblog. Then have your weblog sends a TrackBack ping to the TrackBack URL, so that your post would show up here.

Messages, files, and images copyright by respective owners.

Products | Services
Forums | Latest | RSS
Library | Search | Wiki
Help | Licenses

Login | Register

71 Users Online

Hacking Digital Cameras
Fun for Photographers



Amazon Associate

Copyright © 1996 - 2024. All Rights Reserved.