Hi, 1)I know jar signer support multiple signatures in one jar file. If an APK file has two valid signatures, does that mean this APK can access signature level permission provided by both signers?
2)Another question is about sharedUserID. If there APK try to use same sharedUserID, and the signing keys are: APK-1 signed by key A APK-2 signed by key B APK-3 signed by both A and B What would happen? 3)I found out if I use two different hash algorithms in manifest file, javasigner -verify would fail because Manifest entry is changed when adding 2nd hash line. Is there a way to add two hash line to manifest first, and then generated two SF files and .RSA files? Are these all crazy questions ;-) Thanks Ji
