#33172: Start using a maintained version of osslsigncode for our authenticode
signing
--------------------------------------------+--------------------------
Reporter: gk | Owner: tbb-team
Type: enhancement | Status: new
Priority: Medium | Milestone:
Component: Applications/Tor Browser | Version:
Severity: Normal | Resolution:
Keywords: tbb-sign, TorBrowserTeam202004 | Actual Points:
Parent ID: #33171 | Points:
Reviewer: | Sponsor:
--------------------------------------------+--------------------------
Changes (by sysrqb):
* keywords: tbb-sign => tbb-sign, TorBrowserTeam202004
Comment:
Replying to [comment:2 boklm]:
> This sounds like a good idea. Especially since the old version of
osslsigncode does not build with openssl 1.1:
> https://sourceforge.net/p/osslsigncode/bugs/10/
In case anyone is wondering how we solved this, there is an available yolo
patch (mentioned at the bottom of that ticket) for resolving the compile-
time errors that is apparently sufficient for getting the timestamping
functionality on Linux:
https://sourceforge.net/p/osslsigncode/patches/10/
I'm putting this on the roadmap for April, maybe we can find some time for
it sooner than that.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/33172#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online