signing
=======

For signing windows installers from the host machine, we use osslsigncode:

  https://github.com/mtrojnar/osslsigncode

Some hints about converting certificates and keys:

  https://developer.mozilla.org/en-US/docs/Mozilla/Developer_guide/Build_Instructions/Signing_an_executable_with_Authenticode
  
With the new certificate (2022), we convert to a .pfx like this:

  openssl pkcs12 -export -out leap.pfx -inkey leap.key -in leap.crt