[tor-bugs] #33172 [Applications/Tor Browser]: Start using a maintained version of osslsigncode for our authenticode signing

Tor Bug Tracker & Wiki blackhole at torproject.org
Wed Feb 12 15:41:02 UTC 2020


#33172: Start using a maintained version of osslsigncode for our authenticode
signing
--------------------------------------------+--------------------------
 Reporter:  gk                              |          Owner:  tbb-team
     Type:  enhancement                     |         Status:  new
 Priority:  Medium                          |      Milestone:
Component:  Applications/Tor Browser        |        Version:
 Severity:  Normal                          |     Resolution:
 Keywords:  tbb-sign, TorBrowserTeam202004  |  Actual Points:
Parent ID:  #33171                          |         Points:
 Reviewer:                                  |        Sponsor:
--------------------------------------------+--------------------------
Changes (by sysrqb):

 * keywords:  tbb-sign => tbb-sign, TorBrowserTeam202004


Comment:

 Replying to [comment:2 boklm]:
 > This sounds like a good idea. Especially since the old version of
 osslsigncode does not build with openssl 1.1:
 > https://sourceforge.net/p/osslsigncode/bugs/10/

 In case anyone is wondering how we solved this, there is an available yolo
 patch (mentioned at the bottom of that ticket) for resolving the compile-
 time errors that is apparently sufficient for getting the timestamping
 functionality on Linux:
 https://sourceforge.net/p/osslsigncode/patches/10/

 I'm putting this on the roadmap for April, maybe we can find some time for
 it sooner than that.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/33172#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list