Sign.bat file is failing with errors
Open source disk encryption with strong security for the Paranoid
Brought to you by:
idrassi
Menu
▾
▴
I have downloaded the source. Followed the instructions in readme.text file. I was able to compile the solution without any issues. However, when I ran sign.bat file in Signing folder, it is failing with below error.
SignTool Error: No certificates were found that met all the given criteria.
Do I need to purchase any certificate? How to make it work with self-signed code-signing certificate?
I'm new to code-signing binaries.
Thanks in advance
Ajay V
Indeed, you need a code signing certificate to be able to sign the binaries and make VeraCrypt driver load successfully on Windows.
For real world deployment, you have to purchase a certificate but if it is just for testing you can use a test code-signing certificate that you generate your-self and then configure Windows to accept test signature.
I have added to git a test code-signing certificate and a script (sign_test.bat) that signed the binaries and the installer with it: https://sourceforge.net/p/veracrypt/code/ci/master/tree/src/Signing/
Get the new files from git (TestCertificate folder and sign_test.bat) and you will be able to generate an installer that will run on Windows machines configured in test mode (it is not mandatory to put idrix_TestRootCA.crt in the Trusted Certificates store for the driver to load but doing so will remove warnings during the installation).
The following link explains how to configure Windows to accept test signature:
https://msdn.microsoft.com/en-us/library/windows/hardware/ff553484%28v=vs.85%29.aspx
Thanks for the prompt response. It helped me to move forward.
Thanks
Ajay V