Forum Discussion
Signing kernel driver fails with Cab Signature validation failed with error: 0x80090008
As of 14.09.2021 I am getting error when submitting drivers for signing.
When I submit the CAB file, I get Cab Signature validation failed with error: 0x80090008.
What causes the issue is a simple parameter of signtool.exe when I sign the CAB file.
Obviously, Microsoft have changed the requirements for what type of CAB signing they accept.
Till yesterday, my signtool.exe options were "/a /tr http://timestapprovider/ /td sha256 .. etc"
After I got the error I started reading I found out I'm missing one more parameter : "/fd sha256"
So, it should be like : "/a /fd sha256 /tr http://timestampprovider/ /td sha256 ... etc"
To be honest I don't know how I have missed the change, but now it works.
Hope this helps.
Cheers,
Daniel
4 Replies
- THANKS A LOT! This really helped me! I had also totally missed that SHA256 hash was a requirement now and got no clues from the error log.
Hello! You've posted your question in the Tech Community Discussion space, which is intended for discussion around the Tech Community website itself, not product questions.
Can you let me know which product you are referring to here? Happy to move your post to the appropriate product area.Hello
Did you solve this problem?
Why did you provide links in http protocol ? / are useless!- Deleted
The http was just as example. The main point was that I had forgotten to add the "/fd sha256" key to signtool parameters.
