Changes between Version 12 and Version 13 of BuildingTapWindows6


Ignore:
Timestamp:
04/22/16 15:05:53 (6 years ago)
Author:
Samuli Seppänen
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • BuildingTapWindows6

    v12 v13  
    9595Examples:
    9696{{{
    97 signtool.exe sign /v /ac digicert-cross-cert.crt /t http://timestamp.digicert.com /f kernel-mode.pfx /p <pfx-password> tap6/amd64/tap0901.cat
    98 signtool.exe sign /v /ac digicert-cross-cert.crt /t http://timestamp.digicert.com /s My -n <subjectname> tap6/amd64/tap0901.cat
     97signtool.exe sign /v /s My /n OpenVPN /ac digicert-assured-id-ca-root.crt /t http://timestamp.digicert.com /fd SHA1 tap6/amd64/tap0901.cat
     98signtool.exe sign /v /f digicert-sha1-codesigning.pfx /p <pfx-password> /ac digicert-assured-id-ca-root.crt /as /t http://timestamp.digicert.com /fd SHA1 tap6/amd64/tap0901.cat
     99}}}
     100Example of adding two signatures and timestamps (required signtool.exe from Windows Kit 10):
     101{{{
     102# Create primary (SHA1) signature (certificate in a pfx file)
     103signtool.exe sign /v /f digicert-sha1-codesigning.pfx /p <pfx-password> /ac digicert-assured-id-ca-root.crt /fd SHA1 tap6/amd64/tap0901.cat
     104signtool.exe timestamp /tr http://timestamp.digicert.com /td SHA1 /tp 1 tap6/amd64/tap0901.cat
     105
     106# Add secondary (SHA2) signature (certificate in the certificate store)
     107signtool.exe sign /v /s My /n OpenVPN /ac digicert-extended-validation-ca-root.crt /as /fd SHA256 tap6/amd64/tap0901.cat
     108signtool.exe timestamp /tr http://timestamp.digicert.com /td SHA256 /tp 1 tap6/amd64/tap0901.cat
    99109}}}
    100110
     
    112122signtool.exe verify /v /kp /c <drivername>.cat <drivername>.sys
    113123}}}
     124
     125Signatures can also be validated by looking at "File properties" of the ''tap0901.cat'' file. The publisher should show up correctly in some places (not necessarily all), there should be a timestamp counter-certificate, and an unbroken certification path should be present.
    114126
    115127== External links ==