Codesigning only uses SHA1

This forum can be browsed by the general public. Posting is limited to current SAPIEN license holders with active maintenance and does not offer a response time guarantee.
Forum rules
DO NOT POST LICENSE NUMBERS, ACTIVATION KEYS OR ANY OTHER LICENSING INFORMATION IN THIS FORUM.
Only the original author and our tech personnel can reply to a topic that is created in this forum. If you find a topic that relates to an issue you are having, please create a new topic and reference the other in your post.

Any code longer than three lines should be added as code using the 'Select Code' dropdown menu or attached as a file.
This topic is 5 years and 8 months old and has exceeded the time allowed for comments. Please begin a new topic or use the search feature to find a similar but newer topic.
User avatar
davidc
Posts: 5913
Last visit: Mon Jul 08, 2019 8:55 am
Been upvoted: 2 times

Re: Codesigning only uses SHA1

Post by davidc »

I used PowerShell to determine the algorithm:
  1. $val = Get-AuthenticodeSignature $Path
  2. $val.SignerCertificate.SignatureAlgorithm
Interesting that Windows reports SHA1 and PowerShell reports SHA256.

Code: Select all

Value                 FriendlyNam
-----                 -----------
1.2.840.113549.1.1.11 sha256RSA
https://msdn.microsoft.com/en-us/librar ... s.85).aspx
David
SAPIEN Technologies, Inc.
User avatar
brvzit-pss01
Posts: 17
Last visit: Fri Jan 19, 2024 12:08 am

Re: Codesigning only uses SHA1

Post by brvzit-pss01 »

$val.SignerCertificate.SignatureAlgorithm -> but this is the algorithm of the certificate itself and not the algorithm of the signature!
User avatar
davidc
Posts: 5913
Last visit: Mon Jul 08, 2019 8:55 am
Been upvoted: 2 times

Re: Codesigning only uses SHA1

Post by davidc »

I found the difference and it is in the timestamp certificate. We are investigating and will get back to you as soon as we have any updates.
David
SAPIEN Technologies, Inc.
User avatar
davidc
Posts: 5913
Last visit: Mon Jul 08, 2019 8:55 am
Been upvoted: 2 times

Re: Codesigning only uses SHA1

Post by davidc »

This issue will be fixed in the next service release.
David
SAPIEN Technologies, Inc.
User avatar
davidc
Posts: 5913
Last visit: Mon Jul 08, 2019 8:55 am
Been upvoted: 2 times

Re: Codesigning only uses SHA1

Post by davidc »

We release the new build (5.5.153) with the SHA256 signing.
David
SAPIEN Technologies, Inc.
This topic is 5 years and 8 months old and has exceeded the time allowed for comments. Please begin a new topic or use the search feature to find a similar but newer topic.