NewsArchive
04-04-2019, 01:20 AM
Friedrich,
I noticed at a client site yesterday that when running my application's
uninstaller it gave the message it wasn't code-signed.
I've tracked it down to:
If create the setup program with SetupBuilder 10.0.6124, the uninstaller
is properly signed.
If I then update SetupBuilder to 10.0.6195, and compile the same setup
script, the uninstaller shows it is signed ok in the SetupBuilder log,
but if you look at the uninstaller.exe properties: Digital
Signatures-Details, it gives the message "This digital signature is not
valid." This is for both SHA1 and SHA2 signatures.
Note the setup program itself is properly signed for both SetupBuilder
versions.
Comparing the two SetupBuilder compilation logs uninstall section, for
10.0.6124 it shows 84 byte-mods applied, but for 10.0.6195 it says 83
byte-mods applied. Other than that they look the same.
************************************
10.0.6124:
Processing Uninstall Code-Signing...
Adding Digital Certificate to Uninstall...
Resolve CSI...
SIGNTOOL
SVER: 6.2.9200.20527
SHA1: 0
SHA2: 0
Successfully code signed Uninstall Object
Process File Overhead Extraction
OK
Uninstall Archive Integrity Verification manipulated successfully
Generating Uninstall Delta [8000]...
84 byte-mods applied
Signature source added [14260:6436]
Signature patch added
OK
Finalizing application...
AIV generated: E4FA0ED845468
Archive Integrity Verification signed successfully
************************************
10.0.6195:
Processing Uninstall Code-Signing...
Adding Digital Certificate to Uninstall...
Resolve CSI...
SIGNTOOL
SVER: 6.2.9200.20527
SHA1: 0
SHA2: 0
Successfully code signed Uninstall Object
Process File Overhead Extraction
OK
Uninstall Archive Integrity Verification manipulated successfully
Generating Uninstall Delta [8000]...
83 byte-mods applied
Signature source added [14258:6437]
Signature patch added
OK
Finalizing application...
AIV generated: EF36CFCF45468
Archive Integrity Verification signed successfully
Thanks...jack
--
********************************************
Who: L Jack Wilson
Where: ljwilson@dNiOgSiPtAaMlav.com
How: Remove Capital Letters from above for a valid email address
Why: Standard Disclaimer fits nicely here.
I noticed at a client site yesterday that when running my application's
uninstaller it gave the message it wasn't code-signed.
I've tracked it down to:
If create the setup program with SetupBuilder 10.0.6124, the uninstaller
is properly signed.
If I then update SetupBuilder to 10.0.6195, and compile the same setup
script, the uninstaller shows it is signed ok in the SetupBuilder log,
but if you look at the uninstaller.exe properties: Digital
Signatures-Details, it gives the message "This digital signature is not
valid." This is for both SHA1 and SHA2 signatures.
Note the setup program itself is properly signed for both SetupBuilder
versions.
Comparing the two SetupBuilder compilation logs uninstall section, for
10.0.6124 it shows 84 byte-mods applied, but for 10.0.6195 it says 83
byte-mods applied. Other than that they look the same.
************************************
10.0.6124:
Processing Uninstall Code-Signing...
Adding Digital Certificate to Uninstall...
Resolve CSI...
SIGNTOOL
SVER: 6.2.9200.20527
SHA1: 0
SHA2: 0
Successfully code signed Uninstall Object
Process File Overhead Extraction
OK
Uninstall Archive Integrity Verification manipulated successfully
Generating Uninstall Delta [8000]...
84 byte-mods applied
Signature source added [14260:6436]
Signature patch added
OK
Finalizing application...
AIV generated: E4FA0ED845468
Archive Integrity Verification signed successfully
************************************
10.0.6195:
Processing Uninstall Code-Signing...
Adding Digital Certificate to Uninstall...
Resolve CSI...
SIGNTOOL
SVER: 6.2.9200.20527
SHA1: 0
SHA2: 0
Successfully code signed Uninstall Object
Process File Overhead Extraction
OK
Uninstall Archive Integrity Verification manipulated successfully
Generating Uninstall Delta [8000]...
83 byte-mods applied
Signature source added [14258:6437]
Signature patch added
OK
Finalizing application...
AIV generated: EF36CFCF45468
Archive Integrity Verification signed successfully
Thanks...jack
--
********************************************
Who: L Jack Wilson
Where: ljwilson@dNiOgSiPtAaMlav.com
How: Remove Capital Letters from above for a valid email address
Why: Standard Disclaimer fits nicely here.