From 36f34b6de6f40c67c79b5db46908cfa6fdfea4d9 Mon Sep 17 00:00:00 2001
From: Marco Rossignoli <marco.rossignoli@gmail.com>
Date: Tue, 28 Feb 2023 11:26:01 +0100
Subject: [PATCH] Fix signature verification (#4331)

---
 scripts/verify-sign.ps1 | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/scripts/verify-sign.ps1 b/scripts/verify-sign.ps1
index dbc0834893..9d819241e7 100644
--- a/scripts/verify-sign.ps1
+++ b/scripts/verify-sign.ps1
@@ -60,6 +60,9 @@ function Verify-Assemblies
                 elseif ($signature.SignerCertificate.Subject -eq "CN=Microsoft 3rd Party Application Component, O=Microsoft Corporation, L=Redmond, S=Washington, C=US") {
                     Write-Debug "Valid ($($signature.SignerCertificate.Thumbprint)): $Path [3rd Party]"
                 }
+                elseif ($signature.SignerCertificate.Subject -eq "CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US") {
+                    Write-Debug "Valid ($($signature.SignerCertificate.Thumbprint)): $Path [3rd Party]"
+                }
                 else {
                     # For legacy components, sign certificate is always "prod" signature. Skip such binaries.
                     if ($signature.SignerCertificate.Thumbprint -eq "98ED99A67886D020C564923B7DF25E9AC019DF26") {