diff options
author | RJ Ryan <rryan@mixxx.org> | 2020-07-08 23:08:25 -0700 |
---|---|---|
committer | RJ Ryan <rryan@mixxx.org> | 2020-07-12 17:40:31 -0700 |
commit | 4d7422a13b74aa8f3e956a306aa469e1fd2dce83 (patch) | |
tree | bd942e3945a495b46ad95e42aff30d4d5100cb1e /build | |
parent | d00aa15710ed919b40a11e2b8b28673b4213750f (diff) |
Add a PKCS12 Windows code signing certificate and sign exe/msi artifacts.
This certificate is encrypted with AppVeyor's "secure files" tool:
https://www.appveyor.com/docs/how-to/secure-files/
The secret, salt and password in appveyor.yml are encrypted with
AppVeyor's repository-specific public key. During AppVeyor builds, the
environment variables are set to the decrypted value of the secret,
salt, and password which allows us to decrypt the PKCS12 file and then
decrypt the private key within the PKCS12 file.
The private key in the PKCS12 file itself is encrypted with
PBE-SHA1-3DES, since apparently Windows does not support AES.
Diffstat (limited to 'build')
-rw-r--r-- | build/certificates/windows_sectigo_codesign_certificate.pfx.enc | bin | 0 -> 7520 bytes |
1 files changed, 0 insertions, 0 deletions
diff --git a/build/certificates/windows_sectigo_codesign_certificate.pfx.enc b/build/certificates/windows_sectigo_codesign_certificate.pfx.enc Binary files differnew file mode 100644 index 0000000000..732161ec5a --- /dev/null +++ b/build/certificates/windows_sectigo_codesign_certificate.pfx.enc |