Exemplo n.º 1
0
        /// <summary>
        /// Signs a ClickOnce manifest or PE file.
        /// </summary>
        /// <param name="certThumbprint">Hexadecimal string that contains the SHA-1 hash of the certificate.</param>
        /// <param name="timestampUrl">URL that specifies an address of a time stamping server.</param>
        /// <param name="path">Path of the file to sign with the certificate.</param>
        /// <param name="targetFrameworkVersion">Version of the .NET Framework for the target.</param>
        public static void SignFile(string certThumbprint, Uri timestampUrl, string path, string targetFrameworkVersion)
        {
            System.Resources.ResourceManager resources = new System.Resources.ResourceManager("Microsoft.Build.Tasks.Deployment.ManifestUtilities.Strings", typeof(SecurityUtilities).Module.Assembly);

            if (String.IsNullOrEmpty(certThumbprint))
            {
                throw new ArgumentNullException("certThumbprint");
            }

            X509Certificate2 cert = GetCert(certThumbprint);

            if (cert == null)
            {
                throw new ArgumentException(resources.GetString("CertNotInStore"), "certThumbprint");
            }

            if (!String.IsNullOrEmpty(targetFrameworkVersion))
            {
                Version targetVersion = Util.GetTargetFrameworkVersion(targetFrameworkVersion);

                if (targetVersion == null)
                {
                    throw new ArgumentException("TargetFrameworkVersion");
                }

                // SHA-256 digest can be parsed only with .NET 4.5 or higher.
                bool isTargetFrameworkSha256Supported = targetVersion.CompareTo(s_dotNet45Version) >= 0;
                SignFileInternal(cert, timestampUrl, path, isTargetFrameworkSha256Supported, resources);
            }
            else
            {
                SignFile(cert, timestampUrl, path);
            }
        }