cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Exit
search
  • Global community
    • Language:
      • Deutsch
      • English
      • Español
      • Français
      • Português
  • 日本語コミュニティ
  • 한국 커뮤니티
0
Upvote

Able to sign successfully using ZXPSignCmdMac, but failing verification

Brian5CE9
New Here ,
Feb 25, 2021 Feb 25, 2021

I'm maintaining a plugin for Creative Suite, and trying to build installers for both Mac and Windows.  I'm able to use `ZXPSignCmdMac -sign ... ` and get output "Signed successfully".  The resulting .zxp files appear valid, in that I am able to build mac installers based on them that install properly and work as advertised. 

 

However, my attempts to sign and build windows installers are failing with "Zxp signature verification failed: 50".  In attempting to troubleshoot this, I tried running "ZXPSignCmdMac -verify" on the same files generated above that appeared to "Sign successfully", and I get: "

"Error - Failed to verify signature. Signature might have been tampered with."

I'm confused as to why signing could appear successful, when something is definitely amiss.

 

 

NOTE: I've tried ZXPSignCmd-64bit, too, with similar results.

$ bin/ZXPSignCmd-64bit -sign dist/g "foo.zxp" certs/5310dab17e8e15-SHA2.p12 `cat certs/5310dab17e8e15-SHA2.pass` -tsa http://timestamp.digicert.com
Signed successfully

 

$ bin/ZXPSignCmd-64bit -verify foo.zxp
Error - Failed to verify signature. Signature might have been tampered with.

 

 

 

TOPICS
CEP , ZXPSign
604
Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
replies 3 Replies 3
latest latest Jump to latest reply
Brian5CE9
New Here ,
Apr 29, 2021 Apr 29, 2021

Also, can anyone point me to the error codes returned when using the -verify flag?  We've seen values of 50, 52, and some customers are seeing a value of -1073741515.  Are these error codes documented anywhere?

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
jorgeg30723821
Explorer ,
May 24, 2022 May 24, 2022
In Response To Brian5CE9

Were you able to find an answer for your question? I am running into the exact same issue

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Abhijeet Narvekar
Explorer ,
Aug 16, 2024 Aug 16, 2024
LATEST

Using windows `signtool` worked for us with digicert digilocker 
verifying signature using ZXP sign command shows success.

ZXPSignCmd -verify client_xxx.zxp -certInfo
*********** Certificate Information ***********
CN: Acrolinx
OU: 
DN: /C=US/ST=NY/O=Acrolinx/CN=Acrolinx
OS Trusted: false
Revoked: false
Timestamp: Valid and within certificate validity dates at time of signing
Signing Certificate: Valid (from 2016-04-27 until 2027-07-15)
***********************************************
Signature verified successfully


Thanks,
Abhijeet

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Resources
API & SDK Documentation
CEP 11 Cookbook
Open in a new window
Photoshop Extensibility
Premiere Pro C++ SDK
Open in a new window
Photoshop C++ SDK
Open in a new window
InDesign Extensibility
Open in a new window
Scripting Documentation
After Effects Scripting
Open in a new window
Illustrator Scripting
Premiere Pro Scripting
Open in a new window
InDesign Scripting
Open in a new window
Photoshop Scripting
Copyright © 2025 Adobe. All rights reserved.
Using the Community Experience League Terms of Use Privacy Cookie preferences Do not sell or share my personal information ad choicesAdChoices