Use SHA256 Digest for Code Signing on Windows

2024-10-01 01:26:01 -04:00 · 2020-01-07 16:34:40 -05:00 · 2020-01-07 16:34:40 -05:00 · edea88b535
commit edea88b535
parent ae471bea14
1 changed files with 2 additions and 2 deletions
--- a/4
+++ b/4
@ -1286,8 +1286,8 @@ appsign() {

                # osslsigncode does not succeed at signing MSI files at this time...
                logInfo "Signing file '${f}' using Microsoft signtool..."
-                signtool sign -f "${key}" -p "${password}" -d "KeePassXC" \
-                    -t "http://timestamp.comodoca.com/authenticode" "${f}"
+                signtool sign -f "${key}" -p "${password}" -d "KeePassXC" -td sha256 \
+                    -fd sha256 -tr "http://timestamp.comodoca.com/authenticode" "${f}"

                if [ 0 -ne $? ]; then
                    exitError "Signing failed!"