Closed CE1CECL closed 2 years ago
DavidXanatos
commented
2 years ago This is a sparse package see here: https://docs.microsoft.com/en-us/windows/apps/desktop/modernize/grant-identity-to-nonpackaged-apps it is used to provide the windows 11 compatible context menu, it is present since 1.0.22 and should be signed properly.
isaak654
commented
2 years ago Anyone have any ideas?
0x800B010A | CERT_E_CHAINING | No certificate chain could be built to a trusted root authority from the cert that was used to sign the app package. | Continue to Step 2 to troubleshoot the certificate trust.
Possibly related to the issue mentioned in https://github.com/sandboxie-plus/Sandboxie/discussions/1858#discussioncomment-2754720 and https://github.com/sandboxie-plus/Sandboxie/discussions/1858#discussioncomment-2755714
CE1CECL
commented
2 years ago Anyone have any ideas?
0x800B010A | CERT_E_CHAINING | No certificate chain could be built to a trusted root authority from the cert that was used to sign the app package. | Continue to Step 2 to troubleshoot the certificate trust.
Possibly related to the issue mentioned in #1858 (comment) and #1858 (comment)
I am using Windows 10 (not 11) and using sandboxie-plus 1.0.22, under releases I get "This app package is not supported for installation by App Installer because it uses certain restricted capabilities." But I used a CI build earlier so maybe that makes a difference. I did use Add-AppxPackage and it did install but cannot find "SbieShell.exe" anywhere (this is mentioned in AppxManifest.xml) Does this only work in 11?
CE1CECL
commented
2 years ago This is a sparse package see here: https://docs.microsoft.com/en-us/windows/apps/desktop/modernize/grant-identity-to-nonpackaged-apps it is used to provide the windows 11 compatible context menu, it is present since 1.0.22 and should be signed properly.
Now that I am reading that, I'm seeing that there isn't supposed to be an EXE? "A sparse package contains a package manifest but no other app binaries and content. The manifest of a sparse package can reference files outside the package in a predetermined external location. "
DavidXanatos
commented
2 years ago Yes sparse package are a windows 11 feature iirc thay may started in a win 10 insider before 11 was a thing but they never made it there to a production build. Also with win 10 the normal menus work just fine, so no need for that anyways
isaak654
commented
2 years ago I think it probably should not be included in the Sandboxie folder of Windows systems other than Win11 (and later):
DavidXanatos
commented
2 years ago Would be in a way nicer but then it would make the installer more complex, plus you couldn't take an installed folder and use it as portable on all systems. So I think its best to leave it as is.
isaak654
commented
2 years ago A Wilders user reported an annoying RunDLL warning related to the introduction of this package: https://www.wilderssecurity.com/threads/sandboxie-plus-1-0-22.445247/page-3#post-3084363
Sandboxie 1.0.22 (running in portable mode). I get the following error when executing "uninstall all":
There was a problem starting D:\SbiePlus\SbieShellExt.dll The specified module could not be found.
By the way, I was unable to reproduce it on Windows 10.
DavidXanatos
commented
2 years ago this is strange and i cant reproduce it, on windows 11 and 7 we don't invoke the win 11 code
isaak654
commented
2 years ago A Wilders user reported an annoying RunDLL warning related to the introduction of this package: https://www.wilderssecurity.com/threads/sandboxie-plus-1-0-22.445247/page-3#post-3084363
Sandboxie 1.0.22 (running in portable mode). I get the following error when executing "uninstall all": There was a problem starting D:\SbiePlus\SbieShellExt.dll The specified module could not be found.
By the way, I was unable to reproduce it on Windows 10.
@DavidXanatos
this is strange and i cant reproduce it, on windows 11 and 7 we don't invoke the win 11 code
Unfortunately I was able to reproduce it on a Windows 7 x64 SP1 system:
I'm on the latest CI build with Sbie Plus v1.1.1
I think you have to be on the" NOT Connected" status in order to reproduce it.
DavidXanatos
commented
2 years ago ok so how to reproduce it exyctly step by stepp please
isaak654
commented
2 years ago ok so how to reproduce it exyctly step by stepp please
Make sure to have the following Advanced options in Maintenance as below:
So no Sandboxie driver or service at all.
Sandbox -> Maintenance -> Disconnect
Sandbox -> Maintenance -> Uninstall all
Error is triggered at this point
I'm using the latest CI build. If you can't reproduce it, I could share the VM privately with you.
DavidXanatos
commented
2 years ago please check HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion value CurrentBuild what do you have there?
isaak654
commented
2 years ago please check HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion value CurrentBuild what do you have there?
The value of CurrentBuild is 7601
DavidXanatos
commented
2 years ago I'll change it to a mroe explicit comparison if (settings.value("CurrentBuild").toInt() >= 22000) // Windows 11 please test the latest 1.1.1
isaak654
commented
2 years ago Thank you, I can't reproduce it anymore with https://github.com/sandboxie-plus/Sandboxie/commit/adc9def12888cd9c7435c7e9e860f4b4eb091361
modz2014
commented
4 months ago would be nice if it does not show under show more options as well
Is your feature request related to a problem or use case?
This isn't a feature request but rather a question.
Describe the solution you'd like
SbieShellPkg.zip
When I double click this file, I get a "This app package is not signed with a trusted certificate. Contact your system administrator or the app developer to obtain a new certificate or app package with trusted certificates. The root certificate and all immediate certificates of the signature in the app package must be trusted (0x800B010A)" error. And When I open this file with 7zip, I get 3 files, all XML's. The assets don't exist anywhere so I couldn't self-sign it with WsAppBak. No one seems to know about this. Anyone have any ideas?
Describe alternatives you've considered
No response