[Mono-devel-list] Authenticode / signcode / chktrust problem
Daryn Nakhuda
daryn at spamarrest.com
Wed Apr 20 23:00:36 EDT 2005
I'm having a problem signing some code (the pvk & spc are valid, and work
fine for signing on windows using signcode.exe)
1. signcode -spc mycert.spc -v mykey.pvk -t
http://timestamp.verisign.com/scripts/timstamp.dll Setup.exe
Mono SignCode - version 1.1.5.0
Sign assemblies and PE files using Authenticode(tm).
Copyright 2002, 2003 Motus Technologies. Copyright 2004-2005
Novell. BSD licensed.
2. chktrust -v /root/Setup.exe
Mono CheckTrust - version 1.1.5.0
Verify if an PE executable has a valid Authenticode(tm)
signature
Copyright 2002, 2003 Motus Technologies. Copyright 2004-2005
Novell. BSD licensed.
Verifying file Setup.exe for Authenticode(tm) signatures...
WARNING! Setup.exe is not timestamped!
ERROR! Setup.exe couldn't find the certificate that signed the
file!
My guess is that perhaps this has something to do with CA's, and I've
downloaded the CA Certs from thawte and verisign, but I'm not sure I've
installed them correctly using certmgr, as I'm not sure the proper use of
the various stores.
This is what I did (for every CA cert I could find):
certmgr -add -c -m CA ThawteServerCA.cer
Mono Certificate Manager - version 1.1.5.0
Manage X.509 certificates and CRL from stores.
Copyright 2002, 2003 Motus Technologies. Copyright 2004-2005
Novell. BSD licensed.
1 certificate(s) added to store CA.
Also, on Widows, when I look at the properties > digital signatures, the
signature IS there, but it says it is "not valid".
Can anyone provide some guidance?
Thanks,
Daryn Nakhuda
Spam Arrest LLC
More information about the Mono-devel-list
mailing list