mirror of
https://github.com/bitcoin/bitcoin.git
synced 2025-01-18 07:34:28 -03:00
f642753887
Also change the mac filename to match The procedure remains the same, but now there's a nifty script to automate the signing process. Future steps: - Build osslsigncode in the gitian-win descriptor so that the signer itself is deterministic. - Verify in the gitian-win-signer descriptor that the expected cert chain was used.
51 lines
1.5 KiB
Bash
Executable file
51 lines
1.5 KiB
Bash
Executable file
#!/bin/sh
|
|
# Copyright (c) 2014-2015 The Bitcoin Core developers
|
|
# Distributed under the MIT software license, see the accompanying
|
|
# file COPYING or http://www.opensource.org/licenses/mit-license.php.
|
|
|
|
set -e
|
|
|
|
ROOTDIR=dist
|
|
BUNDLE="${ROOTDIR}/Bitcoin-Qt.app"
|
|
CODESIGN=codesign
|
|
TEMPDIR=sign.temp
|
|
TEMPLIST=${TEMPDIR}/signatures.txt
|
|
OUT=signature-osx.tar.gz
|
|
OUTROOT=osx
|
|
|
|
if [ ! -n "$1" ]; then
|
|
echo "usage: $0 <codesign args>"
|
|
echo "example: $0 -s MyIdentity"
|
|
exit 1
|
|
fi
|
|
|
|
rm -rf ${TEMPDIR} ${TEMPLIST}
|
|
mkdir -p ${TEMPDIR}
|
|
|
|
${CODESIGN} -f --file-list ${TEMPLIST} "$@" "${BUNDLE}"
|
|
|
|
grep -v CodeResources < "${TEMPLIST}" | while read i; do
|
|
TARGETFILE="${BUNDLE}/`echo "${i}" | sed "s|.*${BUNDLE}/||"`"
|
|
SIZE=`pagestuff "$i" -p | tail -2 | grep size | sed 's/[^0-9]*//g'`
|
|
OFFSET=`pagestuff "$i" -p | tail -2 | grep offset | sed 's/[^0-9]*//g'`
|
|
SIGNFILE="${TEMPDIR}/${OUTROOT}/${TARGETFILE}.sign"
|
|
DIRNAME="`dirname "${SIGNFILE}"`"
|
|
mkdir -p "${DIRNAME}"
|
|
echo "Adding detached signature for: ${TARGETFILE}. Size: ${SIZE}. Offset: ${OFFSET}"
|
|
dd if="$i" of="${SIGNFILE}" bs=1 skip=${OFFSET} count=${SIZE} 2>/dev/null
|
|
done
|
|
|
|
grep CodeResources < "${TEMPLIST}" | while read i; do
|
|
TARGETFILE="${BUNDLE}/`echo "${i}" | sed "s|.*${BUNDLE}/||"`"
|
|
RESOURCE="${TEMPDIR}/${OUTROOT}/${TARGETFILE}"
|
|
DIRNAME="`dirname "${RESOURCE}"`"
|
|
mkdir -p "${DIRNAME}"
|
|
echo "Adding resource for: "${TARGETFILE}""
|
|
cp "${i}" "${RESOURCE}"
|
|
done
|
|
|
|
rm ${TEMPLIST}
|
|
|
|
tar -C "${TEMPDIR}" -czf "${OUT}" .
|
|
rm -rf "${TEMPDIR}"
|
|
echo "Created ${OUT}"
|