openssl - Code signing with osslsigncode - Publisher Unknown -

i encountered bit peculiar behavior when trying automate compilation , signing of particular nsis-based binary. namely, makensis run under wine compile executable, , afterwards osslsigncode used sign binary.

executable seems built fine, works on windows systems, there's issue (in lack of better word) signing. code signing certificate in pkcs#12 format, command used suggested here:

osslsigncode sign -pkcs12 <pkcs12-file> -pass <pkcs12-password> \ -n "your application" -i http://www.yourwebsite.com/ \ -in yourapp.exe -out yourapp-signed.exe

i "succeeded" message osslsigncode, if signing went ok, when binary run on windows (win 7 in case), uac says:

publisher: unknown

the strange thing when opened extracted cert original .p12 file, view it's info, windows afterwards able recognize publisher , digital signature, if somehow became aware of certification path...?

any advice appreciated.

edit 1
osslsigncode versions used: 1.5.2 , 1.7.1

edit 2
sake of comparison, tried signing signtool, , apparently works without problem. looks cert + osslsigncode issue, can't tell exactly.

i tried osslsigncode on exact same exe cert, , make matters more interesting, worked... (i noticed certification paths differ 2 certs).

some cert details:

1) non-working cert
version: v3
public key: rsa 2048 bits
signature hash algorithm: sha1
signature algorithm: sha1rsa
certification path: usertrust -> comodo code signing ca 2 -> nonworkingcert

2) working cert
version: v3
public key: rsa 2048 bits
signature hash algorithm: sha1
signature algorithm: sha1rsa
certification path: usertrust -> utn-userfirst-object -> comodo code signing ca 2 -> workingcert