From 6cb1eefc49dbac29fb5a5bd2bf42569b6882d9c7 Mon Sep 17 00:00:00 2001 From: Mounir IDRASSI Date: Fri, 1 Jan 2016 02:09:44 +0100 Subject: Windows: sign binaries using both SHA-1 and SHA-256 for maximum compatibility. Add requirement for Windows SDK 8.1 that contains signtool.exe version that enables this. --- src/Readme.txt | 3 +++ 1 file changed, 3 insertions(+) (limited to 'src/Readme.txt') diff --git a/src/Readme.txt b/src/Readme.txt index 3e33b570..7b1fe67e 100644 --- a/src/Readme.txt +++ b/src/Readme.txt @@ -46,6 +46,7 @@ Requirements for Building VeraCrypt for Windows: - Microsoft Visual C++ 2008 SP1 (Professional Edition or compatible) - Microsoft Visual C++ 1.52 (available from MSDN Subscriber Downloads) - Microsoft Windows SDK for Windows 7 (configured for Visual C++) +- Microsoft Windows SDK for Windows 8.1 (needed for SHA-256 code signing) - Microsoft Windows Driver Kit 7.1.0 (build 7600.16385.1) - RSA Security Inc. PKCS #11 Cryptographic Token Interface (Cryptoki) 2.20 header files (available at ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-11/v2-20) @@ -105,6 +106,8 @@ Instructions for Building VeraCrypt for Windows: Instructions for Signing and Packaging VeraCrypt for Windows: ------------------------------------------------------------- +First, create an environment variable 'WSDK81' pointing to the Windows SDK +for Windows 8.1 installation directory. The folder "Signing" contains a batch file (sign.bat) that will sign all VeraCrypt components using a code signing certificate present on the certificate store and also build the final installation setup. -- cgit v1.2.3