Since the .pkg files are encrypted using the password from the genkey, can I decrypt a package using the key? Is this possible? - Joel

You cannot decrypt the package, only the box has that capability. The best you can do is load the .pkg on a Roku in developer mode and see what contents you can gather through the BrightScript debugger.--Kevin

Too bad, found a bug and accidentally backed up the wrong version of source before adding untested features to my app.

Git, SVN or another. Choose one and learn it, you'll be thankful you did.

"RokuKevin" wrote:You cannot decrypt the package, only the box has that capability. The best you can do is load the .pkg on a Roku in developer mode and see what contents you can gather through the BrightScript debugger.--KevinInteresting. I didn't know you could sideload signed pkgs. If that's true, I may need to keep that in mind with clients that have opted not to purchase the source code... :?

You would need to be able to sideload signed packages in order to retrieve and rekey the roku.Important: If there are no keys installed on your device, the Packager option will not be available. You may either generate a new set of keys or use the ReKey option on the utilities page to install keys on your device.The “ReKey” button allows you to install a set of keys from an existing applications and use those keys to package a new application. This allows you to use the keys resident in the previous version of the application to sign the new version of the application or enable multiple boxes to sign your application. To do this you MUST have the password that was created when the keys were originally generated. It is highly recommended that you safely store the keys and password for future use. You may create a NULL application package which can be used as a container for storing a set of keys for future use. You may create a NULL application package which can be used as a container for storing a set of keys for future use.That being said, ROKU employees have offered to 'help' individuals on request in specific cases in the past, so why this functionality isn't available eludes me. It's not like pkg files are easily obtainable outside of the roku channel store AFAIK.viewtopic.php?f=34&t=36435#p235910 - that implies something could be possible.

open roku .pkg after encrypting

12 Replies

RokuKevin
Visitor
15 years ago
We agree that we should not allow side-loading of .pkg files. When we added that capability, we weren't thinking of the use case of a developer sharing a package with a third party client. This ability is there for now, but in an upcoming release we'll take it away.

Endless, when you share your .pkg do you also plan on sharing the passwd to the key? We're thinking of not allowing any side-loading of .pkg files so even if the client had the key (to create their own future updates) they wouldn't have access to the source in the .pkg.

--Kevin
TheEndless
Channel Surfer
15 years ago
"RokuKevin" wrote:
We agree that we should not allow side-loading of .pkg files. When we added that capability, we weren't thinking of the use case of a developer sharing a package with a third party client. This ability is there for now, but in an upcoming release we'll take it away.

Great! Thanks!

"RokuKevin" wrote:
Endless, when you share your .pkg do you also plan on sharing the passwd to the key? We're thinking of not allowing any side-loading of .pkg files so even if the client had the key (to create their own future updates) they wouldn't have access to the source in the .pkg.

Not typically, no. I usually only provide the password/key with the source.
I can actually see some value in being able to side-load a .pkg file, so requiring the password to do so seems like a reasonable compromise.

Forum Discussion

open roku .pkg after encrypting

12 Replies

Recent Discussions

ROKU Multiview

Help Needed – "mm_icon_focus_hd" Manifest Error Preventing Public App Submission

Start live channel with timeshift at live position

Roku /keypress ECP command returning HTTP status code 401

HELP! Got developer mode activated and then....