Also See this KB article: http://support.microsoft.com/kb/958044
Carter Quoting Wesley Manning <wmann...@dynagen.ca>: > I should mention there was discussion by wix team on defaulting to > hash checking of files instead of the vericode signature. I changed > over my bundles to use hash checking. From what I can tell and find > using hash verification is just as good. > > -----Original Message----- > From: Wesley Manning [mailto:wmann...@dynagen.ca] > Sent: April-01-14 11:11 AM > To: wix-users@lists.sourceforge.net > Subject: Re: [WiX-users] Bundle fails to verify signature of payload > > Does the computer have internet access? Looks like it's not finding > a "parent" certificate for validation. Not sure. Others on this > list said that validation can be a problem when you don't have > internet access and the proper certificates aren't on the computer. > > -----Original Message----- > From: Pally Sandher [mailto:pally.sand...@iesve.com] > Sent: April-01-14 9:33 AM > To: wix-users@lists.sourceforge.net > Subject: [WiX-users] Bundle fails to verify signature of payload > > Anyone seen this before? I've bundles built using WiX v3.6 which are > failing to apply a patch which has been signed by a renewed code > signing certificate. The bundle was signed by the previous > certificate which expired last month but both the bundle & the patch > show up as valid signatures when I check their file properties. > > The Burn log is as follows: > > [09F8:0818][2014-03-31T12:53:35]: Prompt for source of package: > SharedContentPatch, payload: SharedContentPatch, path: > C:\Temp\ve2013fp2_hotfix3_final\VESharedContent.msp > [09F8:0818][2014-03-31T12:53:35]: Acquiring package: > SharedContentPatch, payload: SharedContentPatch, download from: > http://cdn.iesve.com/ve/VESharedContent.msp > [0BFC:0BD4][2014-03-31T12:54:32]: Error 0x80070490: Failed to find > expected public key in certificate chain. > [0BFC:0BD4][2014-03-31T12:54:32]: Error 0x80070490: Failed to verify > expected payload against actual certificate chain. > [0BFC:0BD4][2014-03-31T12:54:32]: Error 0x80070490: Failed to verify > signature of payload: SharedContentPatch > [0BFC:0BD4][2014-03-31T12:54:32]: Failed to verify payload: > SharedContentPatch at path: C:\ProgramData\Package > Cache\.unverified\SharedContentPatch, error: 0x80070490. Deleting > file. > [0BFC:0BD4][2014-03-31T12:54:32]: Error 0x80070490: Failed to cache > payload: SharedContentPatch > [09F8:0818][2014-03-31T12:54:32]: Failed to cache payload: > SharedContentPatch from working path: > C:\Users\zxc\AppData\Local\Temp\{28ab7e13-61b4-4bdd-a582-d2197a5e794f}\SharedContentPatch, > error: > 0x80070490. > [09F8:0818][2014-03-31T12:54:32]: Application requested retry of > payload: SharedContentPatch, encountered error: 0x80070490. > Retrying... > [09F8:0818][2014-03-31T12:54:32]: Prompt for source of package: > SharedContentPatch, payload: SharedContentPatch, path: > C:\Temp\ve2013fp2_hotfix3_final\VESharedContent.msp > [09F8:0818][2014-03-31T12:54:35]: Acquiring package: > SharedContentPatch, payload: SharedContentPatch, download from: > http://cdn.iesve.com/ve/VESharedContent.msp > [0BFC:0BD4][2014-03-31T12:55:32]: Error 0x80070490: Failed to find > expected public key in certificate chain. > [0BFC:0BD4][2014-03-31T12:55:32]: Error 0x80070490: Failed to verify > expected payload against actual certificate chain. > [0BFC:0BD4][2014-03-31T12:55:32]: Error 0x80070490: Failed to verify > signature of payload: SharedContentPatch > [0BFC:0BD4][2014-03-31T12:55:32]: Failed to verify payload: > SharedContentPatch at path: C:\ProgramData\Package > Cache\.unverified\SharedContentPatch, error: 0x80070490. Deleting > file. > [0BFC:0BD4][2014-03-31T12:55:32]: Error 0x80070490: Failed to cache > payload: SharedContentPatch > [09F8:0818][2014-03-31T12:55:32]: Failed to cache payload: > SharedContentPatch from working path: > C:\Users\zxc\AppData\Local\Temp\{28ab7e13-61b4-4bdd-a582-d2197a5e794f}\SharedContentPatch, > error: > 0x80070490. > [09F8:0818][2014-03-31T12:55:32]: Application requested retry of > payload: SharedContentPatch, encountered error: 0x80070490. > Retrying... > [09F8:0818][2014-03-31T12:55:32]: Prompt for source of package: > SharedContentPatch, payload: SharedContentPatch, path: > C:\Temp\ve2013fp2_hotfix3_final\VESharedContent.msp > [09F8:0818][2014-03-31T12:55:35]: Acquiring package: > SharedContentPatch, payload: SharedContentPatch, download from: > http://cdn.iesve.com/ve/VESharedContent.msp > [0BFC:0BD4][2014-03-31T12:56:31]: Error 0x80070490: Failed to find > expected public key in certificate chain. > [0BFC:0BD4][2014-03-31T12:56:31]: Error 0x80070490: Failed to verify > expected payload against actual certificate chain. > [0BFC:0BD4][2014-03-31T12:56:31]: Error 0x80070490: Failed to verify > signature of payload: SharedContentPatch > [0BFC:0BD4][2014-03-31T12:56:31]: Failed to verify payload: > SharedContentPatch at path: C:\ProgramData\Package > Cache\.unverified\SharedContentPatch, error: 0x80070490. Deleting > file. > [0BFC:0BD4][2014-03-31T12:56:31]: Error 0x80070490: Failed to cache > payload: SharedContentPatch > [09F8:0818][2014-03-31T12:56:31]: Failed to cache payload: > SharedContentPatch from working path: > C:\Users\zxc\AppData\Local\Temp\{28ab7e13-61b4-4bdd-a582-d2197a5e794f}\SharedContentPatch, > error: > 0x80070490. > [09F8:03F0][2014-03-31T12:56:31]: Error 0x80070490: Failed while > caching, aborting execution. > > The error is the same regardless of whether the patch is available > locally or if it downloads the file from the URL above. > The patch applies perfectly fine if I double click it or run it > using msiexec /update myself from a command prompt. > It also fails if I don't sign the patch. > Could this be caused by the bundle being older than the patch? The > patch the bundle was built against has been superseded by a newer > patch with the everything identical to the old one, the only > difference being it's signed with a new certificate. > > Palbinder Sandher > Software Platform Engineer > T: +44 (0) 141 945 8500 > F: +44 (0) 141 945 8501 > http://www.iesve.com > > **Design, Simulate + Innovate with the <Virtual Environment>** > Integrated Environmental Solutions Limited. Registered in Scotland > No. SC151456 Registered Office - Helix Building, West Of Scotland > Science Park, Glasgow G20 0SP Email Disclaimer > > > > ------------------------------------------------------------------------------ > _______________________________________________ > WiX-users mailing list > WiX-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/wix-users > > ------------------------------------------------------------------------------ > _______________________________________________ > WiX-users mailing list > WiX-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/wix-users > > ------------------------------------------------------------------------------ > _______________________________________________ > WiX-users mailing list > WiX-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/wix-users > > ------------------------------------------------------------------------------ _______________________________________________ WiX-users mailing list WiX-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/wix-users
