数字签名似乎删除了强名称签名 [英] Digital signature seems to remove Strong Name signature

问题描述

我在C ++ / CLI中有一个程序集。使用链接器选项，使用SN.exe生成密钥，此程序集名称很强。



但是，如果使用signtool进行数字签名，则使用相同的强名称程序集.exe，它似乎删除了强名称签名，确实强名称验证失败，并且它没有安装在目标机器的GAC中。



查看此文档： https://msdn.microsoft.com/en-us /library/vstudio/ms235305%28v=vs.100%29.aspx [ ^ ]



- 它表示如果强名称密钥被删除之后使用了后期处理，lime mt.exe（我不确定signtool.exe是否属于同一工具类别），但它表示只有在使用CLR属性时才会这样做。我使用Linker选项进行强命名。



请提供有关强名称和C ++ / CLI程序集数字签名的流程建议。数字签名后我是否需要重新签名？



谢谢，

I've an assembly in C++/CLI. This assembly is strong named, using Linker options, with a SN.exe generated Key.

However, the same strongly named assembly, if it is digitally signed, using signtool.exe, it seems to remove the strong name signature, indeed the strong name validation fails, and it does not install in the target machine's GAC.

Looking at this documentation : https://msdn.microsoft.com/en-us/library/vstudio/ms235305%28v=vs.100%29.aspx[^]

- it says the strong name key is removed if post processing took, lime mt.exe (I'm not certain if signtool.exe falls in the same tools category)is used afterwards, but it says it does so only if CLR attributes are used. I user Linker options for strong naming.

Kindly advise on the process which can be used to strong name and digitally sign the C++/CLI assembly. Would I have to re-sign the assembly after digitally signing it?

Thanks,

推荐答案

是你必须这样做。签名是从内到外的过程!!!



我使用MageUI-Tool的经验：最好只签一次并避免辞职。我已重新加载清单中的所有文件以更新哈希值。

Yes you have to do it. Signing is a process from inside to the outside!!!

My experience by using the MageUI-Tool: it is best to sign only once and avoid resigning. And I have reloaded all files in the manifest to update the hashes.

这篇关于数字签名似乎删除了强名称签名的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！