Hi Peter,
Thanks after changing the command as per your suggestion, I was able to load driver on windows Vista 64 bit. But on 2003 and XP I am getting Windows Logo Program warning with continue / stop installation option. I have added certificate to “Trusted publisher” before installing the driver.
This warning might be expected as per Tim’s reply as we have not submited drivers for WHQL tests, but atleast it should display company name which is not happening.
Below is result of signtool verify command for my catalog file:
c:\WinDDK\6001.18001\bin\SelfSign\signtool.exe verify /v my.cat
Verifying: my.cat
SHA1 hash of file: 70C036D304AAEF93395F53B12CD4CD9BA737E5B7
SignTool Error: A certificate chain processed, but terminated in a root
certificate which is not trusted by the trust provider.
Signing Certificate Chain:
Issued to: Class 3 Public Primary Certification Authority
Issued by: Class 3 Public Primary Certification Authority
Expires: 8/1/2028 11:59:59 PM
SHA1 hash: 742C3192E607E424EB4549542BE1BBC53E6174E2
Issued to: VeriSign Class 3 Code Signing 2004 CA
Issued by: Class 3 Public Primary Certification Authority
Expires: 7/15/2014 11:59:59 PM
SHA1 hash: 197A4AEBDB25F0170079BB8C73CB2D655E0018A4
Issued to: UES Limited
Issued by: VeriSign Class 3 Code Signing 2004 CA
Expires: 3/5/2012 11:59:59 PM
SHA1 hash: 4A897FB5D7029768017EA2292A2AD3B3A25A2420
The signature is timestamped: 3/9/2009 3:41:48 PM
Timestamp Verified by:
Issued to: Thawte Timestamping CA
Issued by: Thawte Timestamping CA
Expires: 12/31/2020 11:59:59 PM
SHA1 hash: BE36A4562FB2EE05DBB3D32323ADF445084ED656
Issued to: VeriSign Time Stamping Services CA
Issued by: Thawte Timestamping CA
Expires: 12/3/2013 11:59:59 PM
SHA1 hash: F46AC0C6EFBB8C6A14F55F09E2D37DF4C0DE012D
Issued to: VeriSign Time Stamping Services Signer - G2
Issued by: VeriSign Time Stamping Services CA
Expires: 6/14/2012 11:59:59 PM
SHA1 hash: ADA8AAA643FF7DC38DD40FA4C97AD559FF4846DE
SignTool Error: File not valid: my.cat
Number of files successfully Verified: 0
Number of warnings: 0
Number of errors: 1
Is this expected? Previously, I was using self-signed certificates [as per %WINDDK%\bin\selfsign\selfsign_readme.htm]. We used to add self-signed certificate to certificate store before installing driver and because of which I was never getting any warning on atleast Windows XP…but now my drivers are unsigned for Windows XP too? Please advice if I am wrong.
Thanks in advance,
Pratima