Changes between Version 13 and Version 14 of BuildingTapWindows6


Ignore:
Timestamp:
04/22/16 15:21:20 (6 years ago)
Author:
Samuli Seppänen
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • BuildingTapWindows6

    v13 v14  
    9393signtool.exe sign /v /ac <cross-certificate> /t <timestamp-url> /s My /n <subjectname> <file>
    9494}}}
    95 Examples:
    96 {{{
    97 signtool.exe sign /v /s My /n OpenVPN /ac digicert-assured-id-ca-root.crt /t http://timestamp.digicert.com /fd SHA1 tap6/amd64/tap0901.cat
    98 signtool.exe sign /v /f digicert-sha1-codesigning.pfx /p <pfx-password> /ac digicert-assured-id-ca-root.crt /as /t http://timestamp.digicert.com /fd SHA1 tap6/amd64/tap0901.cat
    99 }}}
    100 Example of adding two signatures and timestamps (required signtool.exe from Windows Kit 10):
     95Example of adding two signatures and timestamps. This requires a relatively recent signtool.exe (e.g. from Windows Kit 10):
    10196{{{
    10297# Create primary (SHA1) signature (certificate in a pfx file)
    103 signtool.exe sign /v /f digicert-sha1-codesigning.pfx /p <pfx-password> /ac digicert-assured-id-ca-root.crt /fd SHA1 tap6/amd64/tap0901.cat
    104 signtool.exe timestamp /tr http://timestamp.digicert.com /td SHA1 /tp 1 tap6/amd64/tap0901.cat
     98signtool.exe sign /v /f digicert-sha1.pfx /p <pfx-password> /ac digicert-assured-id.crt /t http://timestamp.digicert.com /fd SHA1 tap6/amd64/tap0901.cat
    10599
    106100# Add secondary (SHA2) signature (certificate in the certificate store)
    107 signtool.exe sign /v /s My /n OpenVPN /ac digicert-extended-validation-ca-root.crt /as /fd SHA256 tap6/amd64/tap0901.cat
     101signtool.exe sign /v /s My /n OpenVPN /ac digicert-high-assurance-ev.crt /as /fd SHA256 tap6/amd64/tap0901.cat
    108102signtool.exe timestamp /tr http://timestamp.digicert.com /td SHA256 /tp 1 tap6/amd64/tap0901.cat
    109103}}}