[tor-bugs] #15539 [Tor bundles/installation]: Removing signature on Tor Browser .exe should result in SHA256 value listed in sha256sums.txt

Tor Bug Tracker & Wiki blackhole at torproject.org
Wed Apr 1 13:40:45 UTC 2015


#15539: Removing signature on Tor Browser .exe should result in SHA256 value listed
in sha256sums.txt
--------------------------------------+---------------------
 Reporter:  gk                        |          Owner:  gk
     Type:  defect                    |         Status:  new
 Priority:  normal                    |      Milestone:
Component:  Tor bundles/installation  |        Version:
 Keywords:                            |  Actual Points:
Parent ID:                            |         Points:
--------------------------------------+---------------------
 Since #3861 landed we do the authenticode code-signing for Windows Tor
 Browser .exe files. In order to compare these files with the ones we built
 deterministically we need to strip its signature. It turns out that this
 works using e.g. osslsigncode but (surprise!) one does not get the same
 SHA256 sum back.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/15539>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list