[Mono-bugs] [Bug 80924][Wis] New - signcode does not prompt for the .pvk password

bugzilla-daemon at bugzilla.ximian.com bugzilla-daemon at bugzilla.ximian.com
Wed Feb 21 10:22:41 EST 2007

Please do not reply to this email- if you want to comment on the bug, go to the
URL shown below and enter your comments there.

Changed by viraj at linux.lk.


--- shadow/80924	2007-02-21 10:22:41.000000000 -0500
+++ shadow/80924.tmp.13303	2007-02-21 10:22:41.000000000 -0500
@@ -0,0 +1,65 @@
+Bug#: 80924
+Product: Mono: Tools
+Version: 1.1
+OS Details: Debian (Etch)
+Status: NEW   
+Priority: Wishlist
+Component: tools
+AssignedTo: mono-bugs at ximian.com                            
+ReportedBy: viraj at linux.lk               
+QAContact: mono-bugs at ximian.com
+TargetMilestone: ---
+Summary: signcode does not prompt for the .pvk password
+Description of Problem:
+I'm having a problem signing a win32 executable using Mono's 'signcode'
+binary with the .spc and .pvk i obtained from Thawte.
+Steps to reproduce the problem:
+1. signcode -spc myspcfromthawte.spc -v mypvkfromthawte.pvk -n "My App -
+Quick Demo" -t http://timestamp.verisign.com/scripts/timstamp.dll 
+Actual Results:
+Mono SignCode - version
+Sign assemblies and PE files using Authenticode(tm).
+Copyright 2002, 2003 Motus Technologies. Copyright 2004-2006 Novell.
+BSD licensed.
+Unhandled Exception:
+System.Security.Cryptography.CryptographicException: Invalid data
+and/or password
+ at Mono.Security.Authenticode.PrivateKey..ctor (System.Byte[] data,
+System.String password) [0x00000]
+ at Mono.Security.Authenticode.PrivateKey.CreateFromFile
+(System.String filename, System.String password) [0x00000]
+ at Mono.Security.Authenticode.PrivateKey.CreateFromFile
+(System.String filename) [0x00000]
+ at Mono.Tools.SignCode.GetPrivateKey (System.String keyfile,
+System.Security.Cryptography.CspParameters csp) [0x00000]
+ at Mono.Tools.SignCode.Main (System.String[] args) [0x00000]
+Expected Results:
+Since my .pvk is encrypted, it should ask me for the .pvk password and
+continue with the code sign process.
+How often does this happen? 
+All the time. But, I created a test certificate (without any passwords)
+using Mono's makecert tool, and i was able to sign the code using that
+unencrypted .pvk.
+Additional Information:
+found a similar case and a suggested workaround on following location.

More information about the mono-bugs mailing list