Add timestamp server management and UI enhancements

Introduced new forms (`TimestampServerEditForm` and `TimestampServerManagementForm`) for managing timestamp servers, including adding, editing, testing, and reordering servers. Added `TimestampServer` and `TimestampManager` classes to handle server configurations, prioritization, and availability testing.

Refactored signing classes (`SignerPfx`, `SignerThumbprint`, `SignerTrustedSigning`) to inherit from a new `SignerBase` class, centralizing common logic and reducing redundancy. Enhanced certificate monitoring with alerts for expiry and improved certificate validation.

Updated `MainForm` with new menu options for managing timestamp servers and certificate monitoring. Improved logging, error handling, and asynchronous operations for better performance and user experience.

Updated assembly version to `1.5.0.0` and added new library references for advanced functionality. Cleaned up redundant code and improved UI layouts for better usability.

Author: michaelmsonne

CHANGELOG.MD

@@ -1,3 +1,11 @@
+## Version 1.5.0.0 (00-00-2025):
+
+- Added certificate monitoring functionality with new CertificateMonitor class and CertificateStatus Form
+- Introduced color-coded alerts for certificate expiry in both Windows Certificate Store and PFX scenarios
+- Enhanced MainForm UI with new menu options for certificate monitoring
+- Improved certificate information display with better visual feedback
+
+
 ## Version 1.4.0.0 (17-03-2025):
 
 - Updated Trusted Signing from v0.1.103.0 to the latest v0.1.108.0

src/SignToolGUI/Class/SignerBase.cs

@@ -0,0 +1,216 @@
+using System;
+using System.Diagnostics;
+using System.IO;
+using System.Threading;
+using System.Threading.Tasks;
+using static SignToolGUI.Class.FileLogger;
+
+namespace SignToolGUI.Class
+{
+    public abstract class SignerBase
+    {
+        public string SignToolExe { get; set; }
+        public bool Verbose { get; set; }
+        public bool Debug { get; set; }
+        public bool Timestamp { get; set; }
+        public TimestampManager TimestampManager { get; set; }
+
+        public delegate void StatusReport(string message);
+        public event StatusReport OnSignToolOutput;
+
+        protected SignerBase(string executable, TimestampManager timestampManager = null)
+        {
+            SignToolExe = executable;
+            TimestampManager = timestampManager ?? new TimestampManager();
+
+            // Subscribe to timestamp manager status updates
+            TimestampManager.OnTimestampStatus += OnTimestampStatusReceived;
+        }
+
+        // Protected method that derived classes can use to raise the event
+        protected virtual void RaiseOnSignToolOutput(string message)
+        {
+            OnSignToolOutput?.Invoke(message);
+        }
+
+        // Handle timestamp status messages
+        private void OnTimestampStatusReceived(string message)
+        {
+            RaiseOnSignToolOutput(message);
+        }
+
+        protected bool VerifyFileExists()
+        {
+            return File.Exists(SignToolExe);
+        }
+
+        protected abstract string BuildSigningArguments(string targetAssembly, string timestampUrl = null);
+
+        public async Task SignAsync(string targetAssembly)
+        {
+            await SignWithFallbackAsync(targetAssembly);
+        }
+
+        // Keep the synchronous version for backward compatibility
+        public void Sign(string targetAssembly)
+        {
+            Task.Run(() => SignWithFallbackAsync(targetAssembly));
+        }
+
+        private async Task SignWithFallbackAsync(string targetAssembly)
+        {
+            if (!VerifyFileExists())
+            {
+                RaiseOnSignToolOutput(@"SignTool.exe can't be found!");
+                return;
+            }
+
+            var startTime = DateTime.Now;
+            var maxAttempts = Timestamp ? TimestampManager.GetMaxRetryAttempts() : 1;
+            var success = false;
+            var lastError = string.Empty;
+
+            for (int attempt = 1; attempt <= maxAttempts && !success; attempt++)
+            {
+                try
+                {
+                    string timestampUrl = null;
+
+                    if (Timestamp)
+                    {
+                        timestampUrl = TimestampManager.GetNextTimestampUrl(attempt);
+                        if (string.IsNullOrEmpty(timestampUrl))
+                        {
+                            RaiseOnSignToolOutput("No timestamp servers available!");
+                            break;
+                        }
+                    }
+
+                    var arguments = BuildSigningArguments(targetAssembly, timestampUrl);
+                    var attemptStartTime = DateTime.Now;
+
+                    RaiseOnSignToolOutput($"Signing attempt {attempt}/{maxAttempts}...");
+                    Message($"Starting signing attempt {attempt}/{maxAttempts} for file: {Path.GetFileName(targetAssembly)}", EventType.Information, 3010);
+
+                    using (var process = new Process())
+                    {
+                        process.StartInfo = new ProcessStartInfo(SignToolExe)
+                        {
+                            Arguments = arguments,
+                            UseShellExecute = false,
+                            CreateNoWindow = true,
+                            WindowStyle = ProcessWindowStyle.Hidden,
+                            RedirectStandardOutput = true,
+                            RedirectStandardError = true
+                        };
+
+                        var output = string.Empty;
+                        var error = string.Empty;
+
+                        process.OutputDataReceived += (sender, e) =>
+                        {
+                            if (!string.IsNullOrEmpty(e.Data))
+                            {
+                                output += e.Data + Environment.NewLine;
+                                RaiseOnSignToolOutput(e.Data);
+                            }
+                        };
+
+                        process.ErrorDataReceived += (sender, e) =>
+                        {
+                            if (!string.IsNullOrEmpty(e.Data))
+                            {
+                                error += e.Data + Environment.NewLine;
+                                RaiseOnSignToolOutput(e.Data);
+                            }
+                        };
+
+                        process.Start();
+                        process.BeginOutputReadLine();
+                        process.BeginErrorReadLine();
+
+                        // Wait for the process to complete asynchronously
+                        await Task.Run(() => process.WaitForExit());
+
+                        var responseTime = DateTime.Now - attemptStartTime;
+                        var exitCode = process.ExitCode;
+
+                        if (exitCode == 0)
+                        {
+                            success = true;
+                            RaiseOnSignToolOutput($"Signing completed successfully on attempt {attempt}");
+
+                            if (Timestamp && !string.IsNullOrEmpty(timestampUrl))
+                            {
+                                TimestampManager.ProcessTimestampResult(true, timestampUrl, null, attempt, responseTime);
+                            }
+
+                            Message($"File signed successfully on attempt {attempt}: {Path.GetFileName(targetAssembly)}", EventType.Information, 3011);
+                        }
+                        else
+                        {
+                            lastError = !string.IsNullOrEmpty(error) ? error.Trim() : $"SignTool exited with code {exitCode}";
+
+                            if (Timestamp && !string.IsNullOrEmpty(timestampUrl))
+                            {
+                                TimestampManager.ProcessTimestampResult(false, timestampUrl, lastError, attempt, responseTime);
+                            }
+
+                            if (attempt < maxAttempts)
+                            {
+                                RaiseOnSignToolOutput($"Attempt {attempt} failed, retrying with next timestamp server...");
+
+                                // Wait before retrying
+                                var retryDelay = TimestampManager.GetRetryDelay();
+                                if (retryDelay > 0)
+                                {
+                                    await Task.Delay(retryDelay);
+                                }
+                            }
+                            else
+                            {
+                                RaiseOnSignToolOutput($"All {maxAttempts} signing attempts failed");
+                                Message($"All signing attempts failed for file: {Path.GetFileName(targetAssembly)}. Last error: {lastError}", EventType.Error, 3012);
+                            }
+                        }
+                    }
+                }
+                catch (Exception ex)
+                {
+                    lastError = ex.Message;
+                    RaiseOnSignToolOutput($"Exception during attempt {attempt}: {ex.Message}");
+
+                    if (attempt >= maxAttempts)
+                    {
+                        Message($"Exception during signing: {ex.Message}", EventType.Error, 3013);
+                        break;
+                    }
+                }
+            }
+
+            var totalTime = DateTime.Now - startTime;
+
+            if (success)
+            {
+                RaiseOnSignToolOutput($"File signing completed successfully in {totalTime.TotalSeconds:F2} seconds");
+            }
+            else
+            {
+                RaiseOnSignToolOutput($"File signing failed after {maxAttempts} attempts. Last error: {lastError}");
+            }
+        }
+
+        protected string GlobalOptionSwitches()
+        {
+            switch (Verbose)
+            {
+                case true when Debug:
+                    return "/v /debug";
+                case true:
+                    return "/v";
+                default:
+                    return Debug ? "/debug" : string.Empty;
+            }
+        }
+    }
+}

src/SignToolGUI/Class/SignerPfx.cs

@@ -1,125 +1,39 @@
 using System;
-using System.Diagnostics;
-using System.IO;
 
 namespace SignToolGUI.Class
 {
-    internal sealed class SignerPfx
+    internal sealed class SignerPfx : SignerBase
     {
-        public string SignToolExe { get; set; }
-        public string TimeStampServer { get; set; }
         public string CertificatePath { get; set; }
         public string CertificatePassword { get; set; }
-        public bool Verbose { get; set; }
-        public bool Debug { get; set; }
-        public bool Timestamp { get; set; }
 
-        public delegate void StatusReport(string message);
-        public event StatusReport OnSignToolOutput;
-
-        public SignerPfx(string executable, string certPath, string certPasswrd = null, string timestampServer = null)
+        public SignerPfx(string executable, string certPath, string certPasswrd = null, TimestampManager timestampManager = null)
+            : base(executable, timestampManager)
         {
-            SignToolExe = executable;
-            TimeStampServer = timestampServer;
             CertificatePath = certPath;
             CertificatePassword = certPasswrd;
         }
 
-        private bool VerifyFileExists()
-        {
-            return File.Exists(SignToolExe);
-        }
-
-        public void Sign(string targetAssembly)
-        {
-            SignAsync(targetAssembly);
-        }
-
-        private void SignAsync(object targetAssembly)
+        protected override string BuildSigningArguments(string targetAssembly, string timestampUrl = null)
         {
-            if (!VerifyFileExists())
-            {
-                OnSignToolOutput?.Invoke(@"SignTool.exe can't be found!");
-                return;
-            }
-            // Check if the timestamp server URL is set
-            if (string.IsNullOrEmpty(TimeStampServer))
-            {
-                OnSignToolOutput?.Invoke("Timestamp server URL is not set!");
-                return;
-            }
-            // Check if the certificate path is set
             if (string.IsNullOrEmpty(CertificatePath))
             {
-                OnSignToolOutput?.Invoke("Certificate path is not set!");
-                return;
+                throw new InvalidOperationException("Certificate path is not set!");
             }
-            // Check if the certificate password is set
+
             if (string.IsNullOrEmpty(CertificatePassword))
             {
-                OnSignToolOutput?.Invoke("Certificate password is not set!");
-                return;
+                throw new InvalidOperationException("Certificate password is not set!");
             }
 
-            // Construct the arguments for the signing process
             var arguments = $@"sign {GlobalOptionSwitches()} /fd sha256 /f ""{CertificatePath}"" /p ""{CertificatePassword}"" /a ""{targetAssembly}""";
 
-            if (Timestamp)
-            {
-                // Include timestamp server argument if Timestamp is true
-                arguments = $@"sign {GlobalOptionSwitches()} /fd sha256 /tr ""{TimeStampServer}"" /td sha256 /f ""{CertificatePath}"" /p ""{CertificatePassword}"" /a ""{targetAssembly}""";
-            }
-
-            // Parse data needed to sign the target assembly
-            var processSha256 = new Process
-            {
-                StartInfo = new ProcessStartInfo(SignToolExe)
-                {
-                    Arguments = arguments,
-                    UseShellExecute = false,
-                    CreateNoWindow = true,
-                    WindowStyle = ProcessWindowStyle.Hidden,
-                    RedirectStandardOutput = true,
-                    RedirectStandardError = true
-                }
-            };
-            processSha256.OutputDataReceived += (sender, e) =>
-            {
-                OnSignToolOutput?.Invoke(e.Data);
-            };
-            processSha256.ErrorDataReceived += (sender, e) =>
-            {
-                OnSignToolOutput?.Invoke(e.Data);
-            };
-            processSha256.Exited += (sender, e) =>
-            {
-                OnSignToolOutput?.Invoke("Exited: " + e);
-            };
-
-            // Start the process and begin reading the output and error streams
-            try
+            if (Timestamp && !string.IsNullOrEmpty(timestampUrl))
             {
-                processSha256.Start();
-                processSha256.BeginOutputReadLine();
-                processSha256.BeginErrorReadLine();
+                arguments = $@"sign {GlobalOptionSwitches()} /fd sha256 /tr ""{timestampUrl}"" /td sha256 /f ""{CertificatePath}"" /p ""{CertificatePassword}"" /a ""{targetAssembly}""";
             }
-            catch (Exception ex)
-            {
-                OnSignToolOutput?.Invoke(ex.Message);
-            }
-        }
 
-        private string GlobalOptionSwitches()
-        {
-            switch (Verbose)
-            {
-                case true when Debug:
-                    return "/v /debug";
-                case true:
-                    return "/v";
-                default:
-                    return Debug ? "/debug" : string.Empty;
-            }
+            return arguments;
         }
     }
 }