Prev: IWDFDevice::CreateWdfFile returns ERROR_INVALID_FUNCTION?
Next: filter driver for monitor
From: anonymous on 11 Jan 2010 10:31
I'm trying to sign a winxp USB driver which is for USB serial emulation using
usbser.sys.

If I self-sign with a local certificate, it will install without the warning
and looks to be fine.

When I try to install the driver signed with my Class 3 code signing
VeriSign certificate, it shows that the .cat file is signed properly, but the
installer says it isn't signed.

I'm not sure what my problem is. I'm trying to walk through the
documentation to see what I could have missed. I'm wondering if it is related
to having it WHQL signed, but if that were the case, I don't see why my local
certificate wouldn't operate the same way as the VeriSign case.

When I read <http://msdn.microsoft.com/en-us/library/aa906298.aspx>, it says
that WHQL release signature or release-signing with a commerical release
certificate should be the same to the PnP device installation. So, I read
this to mean that I should be able to get rid of the warning that the driver
is not signed while testing with the VeriSign signed version. I don't need to
have the WHQL signed version for testing to get rid of the warning.

<http://msdn.microsoft.com/en-us/library/aa906295.aspx> has the Note: that
says 'In Windows XP and previous versions of Windows, you must obtain a WHQL
release signature for a driver package. The operating system will not accept
a digital signature that was created by using a third-party commerical
release certificate.' This seems to be at odds with the state from the other
page and I don't see where I'm getting off.

So, my real question is: Should I be able to sign a USB driver (for a
ClassGuid which has a Windows Logo Program testing suite) with my Class 3
VeriSign certificate for WinXP and not receive a warning from the installer
or must the driver be signed by WHQL before the warning will not appear ?

Thanks,
Bill
From: Maxim S. Shatskih on 11 Jan 2010 14:37
> So, my real question is: Should I be able to sign a USB driver (for a
> ClassGuid which has a Windows Logo Program testing suite) with my Class 3
> VeriSign certificate for WinXP and not receive a warning from the installer
> or must the driver be signed by WHQL before the warning will not appear ?

No, you must WHQL it.

--
Maxim S. Shatskih
Windows DDK MVP
maxim(a)storagecraft.com
http://www.storagecraft.com

 | 
Pages: 1
Prev: IWDFDevice::CreateWdfFile returns ERROR_INVALID_FUNCTION?
Next: filter driver for monitor