elparasite

OK I tried modifying the dwCertPolicy in the SIGNER_CERT_STORE_INFO and it seems OK. I don't really understand why, according to the [documentation](https://docs.microsoft.com/fr-fr/windows/win32/seccrypto/signer-cert-store-info), both values should be OK. https://github.com/elparasite/AzureSignTool/commit/a6af1e441ee8856cb17fdd6ef0a3577d673cbfbe

> @MAUIoxo we are not sure this is correct fix to work with VSM. we were discussing internally. Hi, was the discussion effective ? This is an unbearable suspense.

Just an idea reading the thread, maybe an online verification of some CRL or OCSP during the signing process can cause this issue. If the OCSP server doesn't respond or...