[EMAIL PROTECTED] wrote: > If I got that part right, then when I loaded the x509.cacert into my > XUL application and tried to use signtool to sign an archieve, it was > failing because I was trying to sign with a public key.
Ok, so it seems that you created a self-signed object signing cert (with signtool -G), which you also use as a CA cert at the same time - is that correct? > I am able to get the certificate (which I guess I distribute), but > not sure how to get the private key to sign my object file. The private key is in the cert db you specified when using signtool -G, so you need to specify this db when creating the XPI file (not the one of your XUL app). Kaspar _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
