nhyatt/osslsigncode
1
0
Fork 0
mirror of https://github.com/mtrojnar/osslsigncode.git synced 2025-04-04 17:00:11 -05:00
Code Issues Projects Releases Wiki Activity

Release 2.8

Browse Source 
Signed-off-by: Michał Trojnara <Michal.Trojnara@stunnel.org>
This commit is contained in:
Michał Trojnara 2024-03-03 23:32:15 +01:00
parent 192e7a732b
commit 699bc85d0a
3 changed files with 20 additions and 19 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
.github/workflows/ci.yml vendored
View File

@ -7,7 +7,7 @@ on:
env: env:
# Customize the CMake build type here (Release, Debug, RelWithDebInfo, etc.) # Customize the CMake build type here (Release, Debug, RelWithDebInfo, etc.)
BUILD_TYPE: Release BUILD_TYPE: Release
version: osslsigncode-2.8-dev version: osslsigncode-2.8
jobs: jobs:
build: build:

2
CMakeLists.txt
View File

@ -16,7 +16,7 @@ project(osslsigncode
LANGUAGES C) LANGUAGES C)
# force nonstandard version format for development packages # force nonstandard version format for development packages
set(DEV "-dev") set(DEV "")
set(PROJECT_VERSION "${PROJECT_VERSION_MAJOR}.${PROJECT_VERSION_MINOR}${DEV}") set(PROJECT_VERSION "${PROJECT_VERSION_MAJOR}.${PROJECT_VERSION_MINOR}${DEV}")
# version and contact information # version and contact information

35
NEWS.md
View File

@ -1,25 +1,26 @@
# osslsigncode change log # osslsigncode change log
### 2.8 (unreleased) ### 2.8 (2024.03.03)
- Microsoft PowerShell signing sponsored by Cisco Systems, Inc. - Microsoft PowerShell signing sponsored by Cisco Systems, Inc.
- fixed setting unauthenticated attributes (Countersignature, - fixed setting unauthenticated attributes (Countersignature, Unauthenticated
Unauthenticated Data Blob) in a nested signature Data Blob) in a nested signature
- added support for verifying the signature at a certain position ("-index" option) - added the "-index" option to verify a specific signature or modify its
- added support for adding unauthenticated attributes to the signature unauthenticated attributes
at a certain position ("-index" option) - added CAT file verification
- added CAT file verification and listing each member of the CAT file - added listing the contents of a CAT file with the "-verbose" option
by using the "-verbose" option - added the new "extract-data" command to extract a PKCS#7 data content to be
- added new command "extract-data" to extract a PKCS#7 data content to be signed signed with "sign" and attached with "attach-signature"
- PKCS9_SEQUENCE_NUMBER authenticated attribute support - added PKCS9_SEQUENCE_NUMBER authenticated attribute support
- added the "-ignore-cdp" option to disable CRL Distribution Points (CDP) - added the "-ignore-cdp" option to disable CRL Distribution Points (CDP)
online verification, inability to retrieve CRL from CDP is a critical error online verification
- modified the "-p" option to also connect to CRL Distribution Points - unsuccessful CRL retrieval and verification changed into a critical error
through the configured proxy when verifying - the "-p" option modified to also use to configured proxy to connect CRL
- added Microsoft Root Authority, serial number: 00C1008B3C3C8811D13EF663ECDF40 Distribution Points
to the certificate whitelist - added implicit allowlisting of the Microsoft Root Authority serial number
- added listing of certificate chain retrieved from the signature in case 00C1008B3C3C8811D13EF663ECDF40
of verification failure - added listing of certificate chain retrieved from the signature in case of
verification failure
### 2.7 (2023.09.19) ### 2.7 (2023.09.19)