stackoom
  简体   繁体   中英

Digitally sign a Visual Studio 2012 VSIX extension

 原文  2012-11-13 23:15:05       c#/ visual-studio-2010/ visual-studio-2012/ digital-signature/ vsix

Question

I am trying to sign a Visual Studio 2012 extension that is packaged as a VSIX file.

I have followed the instructions at http://www.jeff.wilcox.name/2010/03/vsixcodesigning/ ; however, I am interested in performing signing without specifying a pfx file and password.

For example, if I were to call 'signtool.exe', my command line would be: 

"signtool.exe" sign /n MySubjectName /t 'http://timestamp.verisign.com/scripts/timstamp.dll' /d "MyDescription" MyPackage.vsix

I understand that this command does not work with VSIX files, though it does work for an MSI archive.

With this command, I do not need to specify a password or pfx file when calling signtool. The best installed certificate is selected, using the specified subject MySubjectName .

Following the code on Jeff's Blog , the signing step requires pfx file name and password to be defined to create the X509Certificate2 used in signing: 

 private static void SignAllParts(Package package, string pfx, string password, string timestamp){
  var signatureManager = new PackageDigitalSignatureManager(package);
  signatureManager.CertificateOption = CertificateEmbeddingOption.InSignaturePart;

  /*...*/

  signatureManager.Sign(toSign, new System.Security.Cryptography.X509Certificates.X509Certificate2(pfx, password));
}

Is there any API involving PackageDigitalSignatureManager that might let me find a X509Certificate based on MySubjectName so that I can sign against that?

1 answers

solution1
 1  2015-03-16 09:25:45

I've solved this by iterating over the certificates found in the current user's store. I filter by the issuer name and take only valid certificates, then I loop over the matching certificates and return the first one which matches also the subject name: 

public static X509Certificate2 Find(string issuer, string subject)
{
    var certStore = new X509Store (StoreName.My, StoreLocation.CurrentUser);
    certStore.Open (OpenFlags.ReadOnly);
    var certCollection = certStore.Certificates.Find (X509FindType.FindByIssuerName, issuer, true);

    foreach (var cert in certCollection)
    {
        if (cert.FriendlyName == subject)
        {
            return cert;
        }
    }

    return null;
}

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Test Explorer List in Visual Studio 2012 Extension VSIX IlMerge Visual Studio extension vsix VSIX Visual studio extension project template Creation Writing Visual Studio Extension (VSIX) with .NET 5.0 Get the selected tabs in Visual studio for Visual studio extension (VSIX) VSIX extension install but item-template not shown in visual studio What entry to make in .pkgdef for a .vsix Visual Studio Snippets Extension Vsix (Visual Studio extension) full path of right-clicked file VSIX (Visual Studio Extension) “Fonts and Colors” changed event Where to store credentials for VSIX - Visual Studio 2017 Extension
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM