数字签名中的RFC3161时间戳信息(authenticode) [英] RFC3161 timestamp information in digital signature (authenticode)
问题描述
有一篇知识库文章解释了如何从Authenticode签名的可执行文件中获取信息
https://support.microsoft.com/en-us/kb/323809
there is a KB article that explains How To Get Information from Authenticode Signed Executables https://support.microsoft.com/en-us/kb/323809
这非常有效,但是如果时间戳服务器会签符号是根据RFC3161(必须由SHA2双重签名,如下所述:
http://zabkat.com/blog/code-signing- sha1-armageddon.htm ),CMSG_SIGNER_INFO中没有szOID_RSA_counterSign信息;相反,有一个记录不好的szOID_RFC3161_counterSign。
This works very well, but if the timestamp server countersignature is according to RFC3161 (necessitated by SHA2 dual signing as explained here http://zabkat.com/blog/code-signing-sha1-armageddon.htm ), then there is no szOID_RSA_counterSign information in CMSG_SIGNER_INFO; instead there is this poorly documented szOID_RFC3161_counterSign.
我尝试了很多东西,但我无法得到(计数器)签名者的名字或时间。 KB-323809中推荐的CryptDecodeObject(PKCS7_SIGNER_INFO)失败,错误0x8009310b(符合ASN1错误标记值)
I have tried many things but I cannot get the (counter)signer name or time off it. CryptDecodeObject(PKCS7_SIGNER_INFO) which is recommended in KB-323809 fails with error 0x8009310b (ASN1 bad tag value met)
在这种情况下如何获得配对者?
How do I get the countersigner in this situation?
谢谢
nikos
PS。请不要将这篇文章移到另一个论坛,我有一个MSDN订阅,并希望得到微软支持人员的答复,谢谢!
PS. Please do not move this post to a different forum, I have an MSDN subscription and expect an answer from somebody from microsoft support, thanks!
推荐答案
this忘记知识库文章并使用WTHelperProvDataFromStateData和相关的辅助API来避免问题。它被标记为depracated,但也适用于Windows 10
this problem is circumvented by forgetting the KB article and using WTHelperProvDataFromStateData and related helper API. It is marked as depracated but works in windows 10 too
这篇关于数字签名中的RFC3161时间戳信息(authenticode)的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
