#25958 closed defect (duplicate)

Signed Windows executables

Reported by: cypherpunks Owned by: tbb-team
Priority: Medium Milestone:
Component: Applications/Tor Browser Version:
Severity: Normal Keywords:
Cc: Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

Is it possible for all Tor executables (firefox.exe, tor.exe, obfs4proxy.exe etc.) to be signed while still satisfying the reproducibility requirement? (minus the signature)

In my case it would help with whitelisting or blacklisting executables with security software.

Child Tickets

Change History (1)

comment:1 Changed 15 months ago by gk

Resolution: duplicate
Status: newclosed

I guess it is possible, but not that easy. We have currently trouble with content signing on macOS which makes our final binaries (content-signed) not easily verifiable (see: comment:4:ticket:20254 for details on what a reasonable start for fixing this for macOS could look like). That said, this is a duplicate of #18288.

Note: See TracTickets for help on using tickets.