OpenSSL-based signcode utility is a utility that performs Authenticode signing of EXE/CAB/MSI files. It also supports timestamping (Authenticode and RFC3161).
|Tags||Software Development Build Tools Security Cryptography|
Release Notes: This release added support for signing MSI files. The correct PE checksum is now calculated instead of setting it to 0. Support for RFC3161 timestamping was added (-ts option) along with support for extracting, removing, and verifying signatures of PE files. A problem with not being able to decode timestamps with no newlines was fixed. Support for reading keys from PVK files was added (requires OpenSSL 1.0.0 or later). Certificates can now be read from PEM files. The -spc option was renamed to -certs (the old option name is still valid).
Release Notes: An improved build system. Support for reading cert+key from a PKCS12 file. Support for reading a key from a PEM file. Support for SHA-1/SHA-256 (the default hash is now SHA-1). A flag for commercial signing (the default is individual).
Release Notes: A padding problem was fixed. Signing of already signed files is allowed. Ryan Rubley's PVK-to-DER guide was added into the README.
Release Notes: Autoconf support and some documentation.
No changes have been submitted for this release.