Git-Mirrors/onionshare
1
0
Fork 0
mirror of https://github.com/onionshare/onionshare.git synced 2025-05-03 06:55:09 -04:00
Code Issues Projects Releases Packages Wiki Activity

macOS package hardening (#967)

Browse source 
When making a macOS release, add a timestamp to signature
This commit is contained in:
Micah Lee 2019-04-21 19:13:48 -07:00 committed by GitHub
parent a4f6f1ec9f
commit 116ff7b97e
1 changed files with 18 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

21
install/build_osx.sh
View file

@ -27,11 +27,26 @@ if [ "$1" = "--release" ]; then
ENTITLEMENTS_PARENT_PATH="$ROOT/install/macos_sandbox/parent.plist" ENTITLEMENTS_PARENT_PATH="$ROOT/install/macos_sandbox/parent.plist"
echo "Codesigning the app bundle" echo "Codesigning the app bundle"
codesign --deep -s "$IDENTITY_NAME_APPLICATION" -f --entitlements "$ENTITLEMENTS_CHILD_PATH" "$APP_PATH" codesign \
codesign -s "$IDENTITY_NAME_APPLICATION" -f --entitlements "$ENTITLEMENTS_PARENT_PATH" "$APP_PATH" --deep \
-s "$IDENTITY_NAME_APPLICATION" \
--force \
--entitlements "$ENTITLEMENTS_CHILD_PATH" \
--timestamp \
"$APP_PATH"
codesign \
-s "$IDENTITY_NAME_APPLICATION" \
--force \
--entitlements "$ENTITLEMENTS_PARENT_PATH" \
--timestamp \
"$APP_PATH"
echo "Creating an installer" echo "Creating an installer"
productbuild --sign "$IDENTITY_NAME_INSTALLER" --component "$APP_PATH" /Applications "$PKG_PATH" productbuild \
--sign "$IDENTITY_NAME_INSTALLER" \
--component "$APP_PATH" /Applications \
--timestamp \
"$PKG_PATH"
echo "Cleaning up" echo "Cleaning up"
rm -rf "$APP_PATH" rm -rf "$APP_PATH"