Commit Graph

  • 4568c890cc Fixed resource leaks, CID 1639164, 1639165, 1639167, 1639168, 1639169 master olszomal 2025-03-31 11:36:58 +02:00
  • 4bd167a8be Fixed directly dereferencing parameter p7, CID 1576008 olszomal 2025-03-31 11:02:37 +02:00
  • e7405fa839 Simplify error handling in PKCS#7 certificate loading, CID 1639170 olszomal 2025-03-31 10:33:41 +02:00
  • 776e2ec7b6 Fix memory management for ministream and difat in MSI output, CID 1639166 olszomal 2025-03-31 10:09:19 +02:00
  • 838aaaee8d libp11 PKCS#11 provider support olszomal 2025-03-28 12:49:43 +01:00
  • e8f19a6efe Added verbose output for digest encryption algorithm and signature during verification olszomal 2024-12-31 13:20:07 +01:00
  • 3a8e25e5bb Added support for multiple OID types in signer info attribute olszomal 2024-12-16 12:58:20 +01:00
  • 7d1b460dfe Style updates olszomal 2024-11-05 14:49:52 +01:00
  • bc3e9e2172 Disable environment updates for Python setup olszomal 2024-11-05 14:39:50 +01:00
  • 21bce757ef Remove specific CMake version setup for macOS olszomal 2024-11-05 14:25:47 +01:00
  • 6a43f62835 Remove Python3_EXECUTABLE olszomal 2024-11-05 13:50:45 +01:00
  • 8780e6f8e4 Fixed pip install olszomal 2024-11-05 13:42:39 +01:00
  • 78a23caa54 Retain needrestart package in Linux dependency installation olszomal 2024-11-05 12:11:31 +01:00
  • d92927aff4 Switch to venv on Linux olszomal 2024-11-05 12:02:14 +01:00
  • 4f412b5989 Removed VIRTUAL_ENV olszomal 2024-11-05 10:34:26 +01:00
  • e6f3ff631d Switch to venv on Windows olszomal 2024-11-05 10:09:31 +01:00
  • 09135aabb8 Check Python and cryptography version in Windows CI workflow olszomal 2024-11-05 08:46:55 +01:00
  • de983e680f Configured macOS environment for arm64 architecture olszomal 2024-11-04 15:21:16 +01:00
  • dc827b94e5 Switch to venv on macOS Michał Trojnara 2024-10-25 18:55:37 +02:00
  • 40ce811701 Fixed conditional compilation for CURL and proxy support olszomal 2024-10-25 15:30:01 +02:00
  • db5b4c4dc0
    Add the "-engineCtrl" option to control hardware and CNG engines (#405) Małgorzata Olszówka 2024-09-08 19:23:38 +02:00
  • 4ee429792d Refactor imports to use explicit submodule imports and organize class/function imports olszomal 2024-09-06 10:56:55 +02:00
  • 27686c0b0c Missing part of 4dd836bab1832b8a87331f2e73356cda4f01e998 Michał Trojnara 2024-09-05 11:43:25 +02:00
  • 21133f9c3b Added the '-blobFile' option to specify a file containing the blob content olszomal 2024-09-04 09:41:33 +02:00
  • 64305d6415 tests: add import for python-cryptography >= 43.0.0 Petr Vaněk 2024-09-01 14:59:49 +02:00
  • 4dd836bab1 Initial 2.10-dev commit Michał Trojnara 2024-06-29 21:58:55 +02:00
  • f57c213207 Use the installed version of Python Michał Trojnara 2024-06-29 20:42:19 +02:00
  • 76ee550c9d Release 2.9 2.9 Michał Trojnara 2024-06-29 20:16:47 +02:00
  • 2b3228d549 Changed error output to stderr instead of stdout olszomal 2024-06-05 12:25:20 +02:00
  • bad6e96e0f Not only include Code Signing certificates Michał Trojnara 2024-06-04 13:25:51 +02:00
  • 3c8c74a8c3 Handled memory reallocation error olszomal 2024-06-03 14:12:50 +02:00
  • 771014a41e Fixed uint32_t overflow when attaching a new MSI sector olszomal 2024-06-03 13:13:22 +02:00
  • 476168e09e Added the "-ignore-crl" option to disable CRL online verification olszomal 2024-06-03 12:02:33 +02:00
  • be4f010535 Fixed to get CAT content value olszomal 2024-06-03 08:39:20 +02:00
  • 2c27e2e37d Fix Ubuntu 24.04 build Michał Trojnara 2024-05-31 21:00:39 +02:00
  • b829e7a802 Fix macos build with GitHub Actions Michał Trojnara 2024-05-31 20:52:03 +02:00
  • d0ae214cb4 Verified number of MSI sectors olszomal 2024-05-31 14:28:38 +02:00
  • 9b1a6c9fb8 Failed to get CAT content olszomal 2024-05-31 12:24:25 +02:00
  • 41b662a8fe Checked cFolders value olszomal 2024-05-31 12:20:10 +02:00
  • 5232734071 Fix fuzzer error - failed to sort central directory entry olszomal 2024-05-29 14:18:10 +02:00
  • 996cf20fa9 Fixed msi dirent memory leak olszomal 2024-05-29 14:17:10 +02:00
  • 825c9dad7c Add '-login' option to force a login to PKCS11 engines Brad Hughes 2024-05-02 17:01:27 -04:00
  • 6e5bef14e9
    Rewrite making test certificates (#393) Małgorzata Olszówka 2024-05-22 18:59:53 +02:00
  • a53bd2bdb3 Diagnostic formatting improvements Michał Trojnara 2024-04-18 09:49:55 +02:00
  • e4d471b885 Code signing CA certificates Michał Trojnara 2024-04-16 16:50:25 +02:00
  • bcb9737dda Remove the "openssl version" step from CI Michał Trojnara 2024-04-15 19:34:50 +02:00
  • 7a5389b719 Fixed cmake test cURL support olszomal 2024-04-10 15:50:58 +02:00
  • d9f0a8dade Fixed missing Crypt32.lib when linking openssl statically olszomal 2024-04-10 14:54:16 +02:00
  • aa8c8dd720 Type casting of the read() return value olszomal 2024-04-10 09:41:31 +02:00
  • 16c5e5aa4a Squashed logically dead code for curl response code for openssl version 3.0.0 and later, CID 1585046 olszomal 2024-04-10 09:35:12 +02:00
  • ded1f7aa67
    Use native HTTP client with OpenSSL 3.0 or later (#378) Michał Trojnara 2024-04-09 19:33:31 +02:00
  • 6ad2679f17 Read the password from stdin if desired Steve McIntyre 2024-03-21 14:24:50 +00:00
  • 4776f43f04 Improved manual olszomal 2024-03-26 10:05:18 +01:00
  • d9db038c65 Sort central directory entries in ascending order by offset olszomal 2024-03-20 09:28:59 +01:00
  • e8ef027776 Simplify base64 decoding in script.c Michał Trojnara 2024-03-11 12:10:20 +01:00
  • 0a0761746f Fixed memory corruption olszomal 2024-03-08 13:26:40 +01:00
  • f51e2a4869 Intercepted X509_V_FLAG_CHECK_SS_SIGNATURE verify error olszomal 2024-03-08 09:53:09 +01:00
  • 093ed12c66 Supported CRL decoding in DER and PEM format olszomal 2024-03-08 09:38:41 +01:00
  • 71a046a2d0 Ignore missing PKCS#9 signing time field (NID_pkcs9_signingTime: 1.2.840.113549.1.9.5) in the CMS_ContentInfo structure. Timestamping time for verification is get from embedded content in this CMS_ContentInfo structure. olszomal 2024-03-08 09:00:24 +01:00
  • c73f82b558 Set the NONCE field in a TSA request olszomal 2024-03-08 08:35:47 +01:00
  • b294f5d18f Initial 2.9-dev commit Michał Trojnara 2024-03-05 16:34:32 +01:00
  • e07bb7d6b2 Update workflow components Michał Trojnara 2024-03-05 15:51:29 +01:00
  • 699bc85d0a Release 2.8 2.8 Michał Trojnara 2024-03-03 23:32:15 +01:00
  • 192e7a732b Fixed memory leaks olszomal 2024-02-29 10:05:02 +01:00
  • 656051676f Changelog update olszomal 2024-02-29 12:21:26 +01:00
  • 3998bcabb2 Simplify BIO chain free up and FILE_FORMAT_CTX cleanup olszomal 2024-02-28 15:12:20 +01:00
  • fa40c57f80 Simplify checking whether a signature exists olszomal 2024-02-27 12:27:42 +01:00
  • 0b93a94ffa Fixed cross-signed root CA certificate olszomal 2024-02-27 16:31:17 +01:00
  • 105fd3af4a Fix handling of printf format specifiers olszomal 2024-02-27 09:57:34 +01:00
  • 86a594b087 NEWS.md entry for Microsoft PowerShell signing Michał Trojnara 2024-02-22 16:39:57 +01:00
  • 1dea73b038 Install python@3.8 on macOS required for the Github Actions CI olszomal 2024-02-21 13:46:32 +01:00
  • b661ed08ed Fix fuzzer error - corrupted data content olszomal 2024-02-20 15:07:14 +01:00
  • ead0584611 Disable curl dependence olszomal 2024-02-20 14:02:55 +01:00
  • bd7751147e Update Windows build documentation Michał Trojnara 2024-02-20 10:03:06 +01:00
  • 1bc7fc36b8 Connect to CRL Distribution Points through the configured proxy when verifying olszomal 2024-02-16 14:09:27 +01:00
  • 42e9733916
    Fix python 3 compatibility in server_http.py (#350) Zeijlon (ThinLinc Team) 2024-02-16 12:39:48 +01:00
  • b2024cee9d Add -ignore-cdp option to help olszomal 2024-02-15 13:40:29 +01:00
  • 9d152b8477 Fix url resource leak, CID 1583652, 1583653 olszomal 2024-02-15 13:31:05 +01:00
  • 7a02d51a83 Print failed certificate chain retrieved from the signature olszomal 2024-02-15 12:27:40 +01:00
  • dac68a3a4d Disable CRL Distribution Points online verification olszomal 2024-02-15 12:12:24 +01:00
  • bd1ab77f44 Improve variable names and comments Michał Trojnara 2024-02-13 17:39:01 +01:00
  • 5ee859db2c Fixed out-of-bounds access, CID 1583604 olszomal 2024-02-13 11:43:06 +01:00
  • ee3c51f6d5 Check BIO_write_ex() return value, CID 1583605 olszomal 2024-02-12 13:43:12 +01:00
  • cedb8b5798 Print default -CAfile in "osslsigncode -v" Michał Trojnara 2024-02-12 12:28:27 +01:00
  • dcf58a00e7 Fixed getting content olszomal 2024-02-10 07:16:23 +01:00
  • 4576895718 Initial script (text) format support Michał Trojnara 2024-02-12 10:54:18 +01:00
  • 1bdcad619e Remove http proxy configuration that may change behavior olszomal 2024-02-06 15:36:43 +01:00
  • 31b046cf98 Fix dereference after null check, CID 1576008 olszomal 2024-01-24 09:01:23 +01:00
  • f3ac2c0c6f Fix resource leak, CID 1576007 olszomal 2024-01-24 08:58:53 +01:00
  • f22c83514c Simplify obtaining an existing signature and creating a new one olszomal 2024-01-23 15:13:21 +01:00
  • 44ca1f38e6 PKCS9_SEQUENCE_NUMBER authenticated attribute support olszomal 2024-01-22 14:00:48 +01:00
  • 0985c47990 Add a new "-index" option to enable verification or addition of attributes to the signature at a certain position olszomal 2024-01-19 14:31:15 +01:00
  • aa158e40ec Fix BIO memory leak olszomal 2024-01-10 15:30:48 +01:00
  • 5da62de5ef Fixed adding signing time olszomal 2024-01-05 14:38:59 +01:00
  • 4d08fbb2c1 Only use IPv4 127.0.0.1 for tests Michał Trojnara 2023-12-21 11:33:48 +01:00
  • 98b004edda Ignore garbage in PE sigpos/siglen Michał Trojnara 2023-12-20 11:16:06 +01:00
  • 34bf3bc525 tests for extract-data command olszomal 2023-12-19 13:02:03 +01:00
  • 64e1bba96b Add a new command extract-data to extract a PKCS#7 data content to be signed olszomal 2023-12-19 12:59:28 +01:00
  • 46bcaa9d88 Skip a null stream warning olszomal 2023-12-18 09:47:10 +01:00
  • 867e0d446d Fixed APPX file specific: attach-signature command olszomal 2023-12-18 09:35:04 +01:00