Skip to content

[Feature]: Script to transplant signature from one signed PE to another signed PE #260

New issue
New issue
Closed
#270
Closed
[Feature]: Script to transplant signature from one signed PE to another signed PE#260
#270
Assignees
copilot-swe-agent
Labels
state:needs-triageNeeds to triaged to determine next stepstype:feature-requestA new feature proposalurgency:lowLittle to no impact
@Flickdm

Description

@Flickdm
Flickdm
opened on Sep 26, 2025

Feature Overview

Ideally we would have a script called "authenticode_transplant" that copies the authenticode signature in a PE to another signed PE if the PE's are compatible.

Solution Overview

the script written in python should

  1. take as arguments two signed PEs (EFI applications)
  2. compare the binaries and confirm that they are valid (other than the signature they should be binary compatible)
  3. extract the signature from the first binary
  4. append that signature to the second binary
  5. confirm that the transplant was successful

Alternatives Considered

No response

Urgency

Low

Are you going to implement the feature request?

I will implement the feature

Do you need maintainer feedback?

No maintainer feedback needed

Anything else?

No response

Metadata

Metadata

Assignees

Labels

state:needs-triageNeeds to triaged to determine next stepstype:feature-requestA new feature proposalurgency:lowLittle to no impact

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions