suckerformimi wrote:
How can I sign code using the built-in Firefox cert db? I'm having
problems with certutil, and it was recommended that I try the built-in
db.
I tried
signtool -d "C:\Documents and Settings\Paul Wilkinson\Application
Data\Mozilla\Firefox\Profiles\7xzqas7j.default" -k "SingShot Media" -p password
signed/
but I got an error message saying:
signtool: the cert "SingShot Media" does not exist in the database:
security library: bad database
I have verified that the cert "SingShot Media" does exist in my "Your
Certificates" cert db by opening Firefox and going to "View
Certificates".
The Firefox UI shows components of the subject name in the cert viewer.
The commandline tools, including signtool, need a nickname, which is not
visible in the UI. You'll need to use certutil to list the certificates
in the database, and pass the nickname in as the -k argument.
Steve
One concern that I have is that there is an intermediate cert in the
chain called "Thawte Code Signing CA". I'll look into that presently.
p
_______________________________________________
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
