| 1 |
Signing on Windows CE. |
| 2 |
|
| 3 |
Windows CE provides a security mechanism to ask the user to confirm |
| 4 |
that he wants to use an application/library, which is unknown to the |
| 5 |
system. This process gets repeated for each dependency of an |
| 6 |
application, meaning each library the application links to, which is |
| 7 |
not recognized yet. |
| 8 |
|
| 9 |
To simplify this process you can use signatures and certificates. A |
| 10 |
certificate gets installed on the device and each file which is |
| 11 |
signed with the according certificate can be launched without the |
| 12 |
security warning. |
| 13 |
|
| 14 |
In case you want to use signatures for your project written in Qt, |
| 15 |
configure provides the -signature option. You need to specify the |
| 16 |
location of the .pfx file and qmake adds the signing step to the |
| 17 |
build rules. |
| 18 |
|
| 19 |
If you need to select a separate signature for a specific project, |
| 20 |
or you only want to sign this single project, you can use the |
| 21 |
"SIGNATURE_FILE = foo.pfx" rule inside the project file. |
| 22 |
|
| 23 |
The above decribed rules apply for command line makefiles as well as |
| 24 |
Visual Studio projects generated by qmake. |
| 25 |
|
| 26 |
Microsoft usually ships development signatures inside the SDK packages. |
| 27 |
You can find them in the Tools subdirectory of the SDK root folder. |
| 28 |
|
| 29 |
Example: |
| 30 |
|
| 31 |
1. calling configure with signing enabled: |
| 32 |
configure.exe -platform win32-msvc2005 -xplatform wincewm50pocket-msvc2005 |
| 33 |
-signature C:\some\path\SDKSamplePrivDeveloper.pfx |
| 34 |
|
| 35 |
2. using pro file to specify signature |
| 36 |
[inside .pro file] |
| 37 |
... |
| 38 |
TARGET = foo |
| 39 |
|
| 40 |
wince*: { |
| 41 |
SIGNATURE_FILE = somepath\customSignature.pfx |
| 42 |
} |
| 43 |
... |
