Nelson Bolyard wrote: > I wonder if Microsoft's signcode.exe tool requires a pvk file, or if it > is able to use a key in Windows' key store.
Yes, it is... quoting from its usage info: > Note: To sign with a SPC file, the required options are -spc and -v if > your private key is in a PVK file. If your private key is in a > registry key container, then -spc and -k are the required options. Using -k is pretty awkward (you first have to figure out the container name, which is a GUID), and then you still need the SPC file. Luckily enough, MS is providing a better alternative to signcode.exe, which is called... signtool.exe (maybe inspired by NSS? ;-) http://msdn2.microsoft.com/en-us/library/aa387764.aspx Using signtool.exe's "sign" subcommand with the /n option makes life a lot easier,then... but I realize this is probably becoming more and more off-topic for mozilla.dev.tech.crypto :-) Kaspar _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
