From edea88b5358d9b4ea7028c8bcd55176f4682ed38 Mon Sep 17 00:00:00 2001 From: Jonathan White Date: Tue, 7 Jan 2020 16:34:40 -0500 Subject: [PATCH] Use SHA256 Digest for Code Signing on Windows --- release-tool | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/release-tool b/release-tool index 6d217ca9d..f6b8c8e27 100755 --- a/release-tool +++ b/release-tool @@ -1286,8 +1286,8 @@ appsign() { # osslsigncode does not succeed at signing MSI files at this time... logInfo "Signing file '${f}' using Microsoft signtool..." - signtool sign -f "${key}" -p "${password}" -d "KeePassXC" \ - -t "http://timestamp.comodoca.com/authenticode" "${f}" + signtool sign -f "${key}" -p "${password}" -d "KeePassXC" -td sha256 \ + -fd sha256 -tr "http://timestamp.comodoca.com/authenticode" "${f}" if [ 0 -ne $? ]; then exitError "Signing failed!"