[Pkg-owncloud-commits] [owncloud-client] 136/171: Do a codesign --verify before running spctl
Sandro Knauß
hefee-guest at moszumanska.debian.org
Wed Feb 17 09:37:00 UTC 2016
This is an automated email from the git hooks/post-receive script.
hefee-guest pushed a commit to annotated tag upstream/2.1.1+dfsg
in repository owncloud-client.
commit 6096a836a42d7f85065e4a5204d17f911b212d1b
Author: Jocelyn Turcotte <jturcotte at woboq.com>
Date: Fri Jan 22 16:54:04 2016 +0100
Do a codesign --verify before running spctl
codesign is less strict than spctl and gives more output.
codesign -d alone doesn't verify but only prints.
---
admin/osx/sign_app.sh | 3 ++-
1 file changed, 2 insertions(+), 1 deletion(-)
diff --git a/admin/osx/sign_app.sh b/admin/osx/sign_app.sh
index b60ec61..e495fe1 100755
--- a/admin/osx/sign_app.sh
+++ b/admin/osx/sign_app.sh
@@ -9,8 +9,9 @@ team_identifier="$3"
codesign -s "$identity" --force --preserve-metadata=entitlements --verbose=4 --deep "$src_app"
# Verify the signature
-spctl -a -t exec -vv $src_app
codesign -dv $src_app
+codesign --verify -v $src_app
+spctl -a -t exec -vv $src_app
# Validate that the key used for signing the binary matches the expected TeamIdentifier
# needed to pass the SocketApi through the sandbox
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-owncloud/owncloud-client.git
More information about the Pkg-owncloud-commits
mailing list