[wix-users] sign targets - strange output behavior

Orzyszek Andreas Andreas.Orzyszek at dentsplysirona.com
Tue Mar 15 01:33:06 PDT 2016


I am not sure if signing a Bundle works as expected.

Here a part of my Bundle.wixproj:


<Import Project="$(WixTargetsPath)" />

<Target Name="SignBundleEngine">
    <Exec Command=' "$(SignToolPath) " sign /v /f "…" /p GEHEIMESPW /t http://timestamp.verisign.com/scripts/timstamp.dll "@(SignBundleEngine)" ' />
<Target Name="SignBundle">
    <Exec Command=' "$(SignToolPath) " sign /v /f …" /p GEHEIMESPW /t http://timestamp.verisign.com/scripts/timstamp.dll "@(SignBundle)" ' />

The documentation here: http://wixtoolset.org/documentation/manual/v3/overview/insignia.html
tells me that this should work. But there should be two exec Command calls. The first for signing the detached engine and the second for signing the final Bundle.exe.

But when building form VS2012 the Output only contains one call to the signtool.

2>     G:\ ... Tools\WIX\310\insignia.exe -v -ib G:\ ... \SiSetupBundle.exe -out obj\Debug\SiSetupBundle.exe
2>     Windows Installer XML Toolset Inscriber version
2>     Copyright (c) Outercurve Foundation. All rights reserved.
2>     "G:\ ... \Tools\SIGN\SignTool.exe" sign /v /f "G:\ ... \Tools\SIGN\NAME.pfx" /p GEHEIM /t http://timestamp.verisign.com/scripts/timstamp.dll "obj\Debug\SiSetupBundle.exe"
2>     The following certificate was selected:
2>         Issued to: Sirona Dental Systems Gmbh
2>         Issued by: VeriSign Class 3 Code Signing 2010 CA
2>         Expires:   Tue May 24 00:59:59 2016
2>         SHA1 hash: DAD571432AEEAED2A40AF4B518F214C1511BE2B2
2>     Done Adding Additional Store
2>     Successfully signed and timestamped: obj\Debug\SiSetupBundle.exe
2>     Number of files successfully Signed: 1
2>     Number of warnings: 0
2>     Number of errors: 0
2>     G:\ ... \Tools\WIX\310\insignia.exe -v -ab obj\Debug\SiSetupBundle.exe G:\ ... \SiSetupBundle.exe -out G:\ ... \SiSetupBundle.exe
2>     Windows Installer XML Toolset Inscriber version
2>     Copyright (c) Outercurve Foundation. All rights reserved.
2>     Copying file from "G:\ ... \Redist\NDP452-KB2901907-x86-x64-AllOS-ENU.exe" to "G:\ ... \Redist\NDP452-KB2901907-x86-x64-AllOS-ENU.exe".
========== Rebuild All: 2 succeeded, 0 failed, 0 skipped ==========

This does not seem right for me. When I check the final bundle in the explorer it seems to be signed correctly.
Is there a way to verify that both, the engine and the bundle, are signed correctly?



Sirona Dental Systems GmbH • HRB 24948 •
Vorsitzender des Aufsichtsrats: Dr. Erich Blum •
Sirona Dental Services GmbH • HRB 25817 •
Geschäftsführung: Rainer Berthan • Michael Geil •
Sitz der Gesellschaften: Bensheim • Registergericht: AG Darmstadt •
Diese E-Mail ist ausschliesslich fuer den angesprochenen Adressaten
bestimmt und kann vertrauliche Informationen beinhalten.
This e-mail is intended only for the designated recipient(s). It may
contain confidential or proprietary information.

More information about the wix-users mailing list