While trying to test my new comodo certificate using sha-2, I found interesting
situation (with sha-1 pragma all works ok).
Whichever one from the newer signcode.exe I use, and whichever one timestamp
server I use, I get a message about "signcode.exe stopped working".
I can fool SetupBuilder to continue compliling anyway, but final result is
weird, I get codesigned exe without "timestamp".
And "codesign verify /pa" says that's all OK with codesign.

Anyone has similar experience? I am doing all testing on win 7/x64
Plus, besides my main problem about what's happening here, I would expect SB
should not compile fine with SHA-2: 0 result.

Thanks for any idea
Darko

Darko,

I had the very same issue two days ago. The timestamp server crashed the
signtool.exe tool. Problem is that signtool.exe sets an incorrect exit code
(0 = success) and after that crashes (caused by a stack corruption). I
switched to the latest signtool.exe Version 10 and that fixed it.

Friedrich

signcode.exe 10.0 10240 16384
do you have better one?
thanks
Darko

signtool.exe

Darko

> signcode.exe 10.0 10240 16384
> do you have better one?

I am also using 10.0.10240.16384 (32-bit) now. But it's only one timestamp
server that crashed the Authenticode tool. All the other ones worked fine.

Friedrich

dear Darko/Friedrich

FRom where do you get version 10?

The URL supplied from Arnor gives a 6.3.9600.17298

Best regards

Edvard Korsbæk

Hi Edvard,

> dear Darko/Friedrich
>
> FRom where do you get version 10?
>
> The URL supplied from Arnor gives a 6.3.9600.17298

That was for Windows 8.1. The following URL is the one for Windows 10:

Windows 10 SDK: https://dev.windows.com/en-us/downloads

Information: https://dev.windows.com/en-us/downloads/windows-10-sdk

Best regards,

--
Arnor Baldvinsson - Icetips Alta LLC

what Arnor said, and I agree there should be a much easier way to get one

Darko