locked
Driver package failing signature validation RRS feed

  • שאלה

  • 2 identical platforms- brand new out-of-box

    Imaged identical using same base .WIM and SCCM TS, same site, on the same subnet, pointing to same DPs

    a .MSI installer to stage a Xerox 355D driver succeeds on 1 and fails on the other. Comparing setupapi.dev.log on both suggests verification is occurring against the same .CAT file. Log excerpts below: 

    Success:

         sig:           {_VERIFY_FILE_SIGNATURE} 17:22:59.939
         sig:                Key      = FX6ZAAL.inf
         sig:                FilePath = C:\WINDOWS\System32\DriverStore\Temp\{16a94b6d-3bae-78f4-e3b1-1002d6ae833c}\FX6ZAAL.inf
         sig:                Catalog  = C:\WINDOWS\System32\DriverStore\Temp\{16a94b6d-3bae-78f4-e3b1-1002d6ae833c}\FX6ZAAL.cat
    !    sig:                Verifying file against specific (valid) catalog failed! (0x800b0109)
    !    sig:                Error 0x800b0109: A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.
         sig:           {_VERIFY_FILE_SIGNATURE exit(0x800b0109)} 17:22:59.969
         sig:           {_VERIFY_FILE_SIGNATURE} 17:22:59.969
         sig:                Key      = FX6ZAAL.inf
         sig:                FilePath = C:\WINDOWS\System32\DriverStore\Temp\{16a94b6d-3bae-78f4-e3b1-1002d6ae833c}\FX6ZAAL.inf
         sig:                Catalog  = C:\WINDOWS\System32\DriverStore\Temp\{16a94b6d-3bae-78f4-e3b1-1002d6ae833c}\FX6ZAAL.cat
         sig:                Success: File is signed in Authenticode(tm) catalog.
         sig:                Error 0xe0000241: The INF was signed with an Authenticode(tm) catalog from a trusted publisher.
         sig:           {_VERIFY_FILE_SIGNATURE exit(0xe0000241)} 17:22:59.984
         sto:           Validating driver package files against catalog 'FX6ZAAL.cat'.
         sto:           Driver package is valid.
    

    Failure:

         sig:           {_VERIFY_FILE_SIGNATURE} 17:15:36.205
         sig:                Key      = FX6ZAAL.inf
         sig:                FilePath = C:\WINDOWS\System32\DriverStore\Temp\{4cb18d0a-6278-3088-6685-b61005e7394b}\FX6ZAAL.inf
         sig:                Catalog  = C:\WINDOWS\System32\DriverStore\Temp\{4cb18d0a-6278-3088-6685-b61005e7394b}\FX6ZAAL.cat
    !    sig:                Verifying file against specific (valid) catalog failed! (0x800b0109)
    !    sig:                Error 0x800b0109: A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.
         sig:           {_VERIFY_FILE_SIGNATURE exit(0x800b0109)} 17:15:36.220
         sig:           {_VERIFY_FILE_SIGNATURE} 17:15:36.220
         sig:                Key      = FX6ZAAL.inf
         sig:                FilePath = C:\WINDOWS\System32\DriverStore\Temp\{4cb18d0a-6278-3088-6685-b61005e7394b}\FX6ZAAL.inf
         sig:                Catalog  = C:\WINDOWS\System32\DriverStore\Temp\{4cb18d0a-6278-3088-6685-b61005e7394b}\FX6ZAAL.cat
    !    sig:                Verifying file against specific Authenticode(tm) catalog failed! (0x800b010a)
    !    sig:                Error 0x800b010a: A certificate chain could not be built to a trusted root authority.
         sig:           {_VERIFY_FILE_SIGNATURE exit(0x800b010a)} 17:15:36.220
    !!!  sto:           An unexpected error occurred while validating driver package. Assuming that driver package is unsigned. Catalog = FX6ZAAL.cat, Error = 0x800B010A
    !!!  sto:           Driver package is considered unsigned.
    !!!  ndv:           Driver package failed signature validation. Error = 0xE0000247
         sto:      {DRIVERSTORE_IMPORT_NOTIFY_VALIDATE exit(0xe0000247)} 17:15:36.220
    !!!  sto:      Driver package failed signature verification. Error = 0xE0000247
    !!!  sto:      Failed to import driver package into Driver Store. Error = 0xE0000247
         sto: {Stage Driver Package: exit(0xe0000247)} 17:15:36.236
    !!!  sto: Failed to stage driver package to Driver Store. Error = 0xE0000247, Time = 156 ms
    <<<  Section end 2019/09/30 17:15:36.236
    <<<  [Exit status: FAILURE(0xe0000247)]
    

    Any help would be great. 

    יום רביעי 02 אוקטובר 2019 02:55

תשובות

  • Hi,

    According to your description, we recommend to ask for help fro, Windows desktop development team for support. They should more familiar with such issue and they should have more resources to help you.

    Windows desktop development:

    https://social.msdn.microsoft.com/Forums/en-US/home?category=windowshardwaredev

    Bests, 


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    • הוצע כתשובה על-ידי Joy-Qiao יום חמישי 03 אוקטובר 2019 02:07
    • סומן כתשובה על-ידי aJ_47 יום ראשון 06 אוקטובר 2019 21:39
    יום חמישי 03 אוקטובר 2019 02:07

כל התגובות

  • Hi,

    According to your description, we recommend to ask for help fro, Windows desktop development team for support. They should more familiar with such issue and they should have more resources to help you.

    Windows desktop development:

    https://social.msdn.microsoft.com/Forums/en-US/home?category=windowshardwaredev

    Bests, 


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    • הוצע כתשובה על-ידי Joy-Qiao יום חמישי 03 אוקטובר 2019 02:07
    • סומן כתשובה על-ידי aJ_47 יום ראשון 06 אוקטובר 2019 21:39
    יום חמישי 03 אוקטובר 2019 02:07
  • Thank you, posted at https://social.msdn.microsoft.com/Forums/en-US/home?forum=whck
    יום ראשון 06 אוקטובר 2019 21:38