More improvements to authenticode-js error handling.

2025-01-27 06:33:15 -05:00 · 2022-06-23 16:23:11 -07:00 · 2022-06-23 16:23:11 -07:00 · 339e3efbef
commit 339e3efbef
parent 30c4c9b6ea
1 changed files with 95 additions and 91 deletions
--- a/authenticode.js
+++ b/authenticode.js
@ -415,11 +415,12 @@ function createAuthenticodeHandler(path) {

            // Decode the timestamp signature block
            var timepkcs7der = null;
-            try { timepkcs7der = forge.asn1.fromDer(forge.util.createBuffer(Buffer.from(data, 'base64').toString('binary'))); } catch (ex) { func('' + ex); return; }
+            try { timepkcs7der = forge.asn1.fromDer(forge.util.createBuffer(Buffer.from(data, 'base64').toString('binary'))); } catch (ex) { func("Unable to parse time-stamp response: " + ex); return; }

            // Decode the executable signature block
            var pkcs7der = null;
-            try { pkcs7der = forge.asn1.fromDer(forge.util.createBuffer(Buffer.from(obj.getRawSignatureBlock(), 'base64').toString('binary'))); } catch (ex) { func('' + ex); return; }
+            try {
+                var pkcs7der = forge.asn1.fromDer(forge.util.createBuffer(Buffer.from(obj.getRawSignatureBlock(), 'base64').toString('binary')));

                // Get the ASN1 certificates used to sign the timestamp and add them to the certs in the PKCS7 of the executable
                // TODO: We could look to see if the certificate is already present in the executable
@ -500,6 +501,7 @@ function createAuthenticodeHandler(path) {

                // Indicate we are done
                func(null);
+            } catch (ex) { func('' + ex); return; }
        });
    }

@ -1315,8 +1317,9 @@ function createAuthenticodeHandler(path) {

                // Decode the timestamp signature block
                var timepkcs7der = null;
-                try { timepkcs7der = forge.asn1.fromDer(forge.util.createBuffer(Buffer.from(data, 'base64').toString('binary'))); } catch (ex) { func('' + ex); return; }
+                try { timepkcs7der = forge.asn1.fromDer(forge.util.createBuffer(Buffer.from(data, 'base64').toString('binary'))); } catch (ex) { func("Unable to parse time-stamp response: " + ex); return; }

+                try {
                    // Get the ASN1 certificates used to sign the timestamp and add them to the certs in the PKCS7 of the executable
                    // TODO: We could look to see if the certificate is already present in the executable
                    const timeasn1Certs = timepkcs7der.value[1].value[0].value[3].value;
@ -1339,6 +1342,7 @@ function createAuthenticodeHandler(path) {

                    // Write the file with the signature block
                    signEx(args, p7signature, obj.filesize, func);
+                } catch (ex) { func('' + ex); }
            });
        }
    }
@ -1715,7 +1719,7 @@ function createAuthenticodeHandler(path) {

                    // Decode the timestamp signature block
                    var timepkcs7der = null;
-                    try { timepkcs7der = forge.asn1.fromDer(forge.util.createBuffer(Buffer.from(data, 'base64').toString('binary'))); } catch (ex) { func('' + ex); return; }
+                    try { timepkcs7der = forge.asn1.fromDer(forge.util.createBuffer(Buffer.from(data, 'base64').toString('binary'))); } catch (ex) { func("Unable to parse time-stamp response: " + ex); return; }

                    // Get the ASN1 certificates used to sign the timestamp and add them to the certs in the PKCS7 of the executable
                    // TODO: We could look to see if the certificate is already present in the executable