1
=== modified file 'scripts/codesign-darwin-verify.sh'
2
--- scripts/codesign-darwin-verify.sh	2012-11-20 22:37:34 +0000
3
+++ scripts/codesign-darwin-verify.sh	2013-02-01 21:15:49 +0000
4
@@ -25,9 +25,14 @@
5
25
rm tmp.req
25
rm tmp.req
6
26
26
7
27
echo "\nChecking that the app satisfies the helper's SMAuthorizedClients requirement"
27
echo "\nChecking that the app satisfies the helper's SMAuthorizedClients requirement"
12
28
otool -s __TEXT __info_plist $helper | grep "^[0-9a-f]\{8,16\}" | xxd -r - - > tmp.plist
28
13
29
perl -nle 'print "identifier $1 and certificate leaf[subject.CN] = \"$2\"" if /identifier (.*) and certificate leaf\[subject.CN\] = &quot;(.*)&quot;/;' tmp.plist > tmp.req 
29
echo "\nActually skipping that because xxd is really slow for some reason"
14
30
$codesign -v -v -R tmp.req Ubuntu\ One.app
30
# otool -s __TEXT __info_plist $helper | grep "^[0-9a-f]\{8,16\}" | xxd -r - - > tmp.plist
15
31
rm tmp.plist tmp.req
31
# perl -nle 'print "identifier $1 and certificate leaf[subject.CN] = \"$2\"" if /identifier (.*) and certificate leaf\[subject.CN\] = &quot;(.*)&quot;/;' tmp.plist > tmp.req 
16
32
# $codesign -v -v -R tmp.req Ubuntu\ One.app
17
33
# rm tmp.plist tmp.req
18
34
19
35
echo "\nChecking spctl rule output, look for 'Developer ID' "
20
36
find ./Ubuntu\ One.app -name "*.app" -print0 | xargs -0 spctl -a --verbose=9 
21
32
37
22
33
echo Done.
38
echo Done.
23
34
39
24
=== modified file 'scripts/codesign-darwin.sh'
25
--- scripts/codesign-darwin.sh	2012-11-20 22:37:34 +0000
26
+++ scripts/codesign-darwin.sh	2013-02-01 21:15:49 +0000
27
@@ -3,7 +3,7 @@
28
3
codesign=/usr/bin/codesign
3
codesign=/usr/bin/codesign
29
4
4
30
5
set -x 
5
set -x 
32
6
set -e
6
33
7
7
34
8
$codesign -f -s "$@" com.ubuntu.one.fsevents
8
$codesign -f -s "$@" com.ubuntu.one.fsevents
35
9
9
36
@@ -11,6 +11,12 @@
37
11
11
38
12
cp com.ubuntu.one.fsevents "Ubuntu One.app/Contents/Library/LaunchServices/"
12
cp com.ubuntu.one.fsevents "Ubuntu One.app/Contents/Library/LaunchServices/"
39
13
13
41
14
$codesign -f -s "$@" "Ubuntu One.app"
14
find Ubuntu\ One.app -name "*.dylib" -exec $codesign -f -s "$@" {} \;
42
15
43
16
find Ubuntu\ One.app -iname "python" -type f -exec $codesign -f -s "$@" {} \;
44
17
45
18
find Ubuntu\ One.app/Contents -name "*.app" -exec $codesign -f -s "$@" {} \;
46
19
47
20
$codesign -f -s "$@"  Ubuntu\ One.app
48
15
21
49
16
echo Done.
22
echo Done.
50
17
23
51
=== modified file 'scripts/setup-mac.py'
52
--- scripts/setup-mac.py	2012-12-10 18:17:41 +0000
53
+++ scripts/setup-mac.py	2013-02-01 21:15:49 +0000
54
@@ -57,7 +57,12 @@
55
57
# NOTE - this needs to be the full CN, not just a substring.
57
# NOTE - this needs to be the full CN, not just a substring.
56
58
# /usr/bin/codesign will find the right cert if you pass it a
58
# /usr/bin/codesign will find the right cert if you pass it a
57
59
# substring, but the rest of the system wants an exact match.
59
# substring, but the rest of the system wants an exact match.
59
60
CODESIGN_CN = "Mac Developer: Michael McCracken (GP72FH8MSU)"
60
if "U1_CODESIGN_CN" not in os.environ:
60
61
    print "Must set U1_CODESIGN_CN to the CN of the cert to use in the helper"
61
62
    print "Exiting."
62
63
    sys.exit()
63
64
64
65
CODESIGN_CN = os.environ["U1_CODESIGN_CN"]
65
61
66
66
62
FSEVENTS_DAEMON_NAME = "com.ubuntu.one.fsevents"
67
FSEVENTS_DAEMON_NAME = "com.ubuntu.one.fsevents"
67
63
68
68
@@ -481,13 +486,23 @@
69
481
        print "building fsevents daemon"
486
        print "building fsevents daemon"
70
482
        log_file_name = os.path.join(INSTALL_DIR,
487
        log_file_name = os.path.join(INSTALL_DIR,
71
483
                                     "fsevents-daemon-build.log")
488
                                     "fsevents-daemon-build.log")
72
489
73
484
        with open(log_file_name, 'w') as logfile:
490
        with open(log_file_name, 'w') as logfile:
74
485
            proj_path = os.path.join(self.source_dir,
491
            proj_path = os.path.join(self.source_dir,
77
486
                                     "ubuntuone-fsevents-daemon",
492
                                     "ubuntuone-fsevents-daemon")
78
487
                                     "objc")
493
            objc_path = os.path.join(proj_path, "objc")
79
494
            data_path = os.path.join(proj_path, "data")
80
495
            plist_file_name = os.path.join(data_path,
81
496
                                           "fseventsd-Info.plist")
82
497
            with open(plist_file_name + ".tmpl", "rb") as infoplist_tmpl:
83
498
                plist_tmpl_data = infoplist_tmpl.read()
84
499
            plist_data = plist_tmpl_data.replace("@CODESIGN_CN@", CODESIGN_CN)
85
500
            with open(plist_file_name, "wb") as infoplist:
86
501
                infoplist.write(plist_data)
87
502
88
488
            cmd = ("cd %s && "
503
            cmd = ("cd %s && "
89
489
                   "xcodebuild -scheme FsEvents SYMROOT=%r clean build" %
504
                   "xcodebuild -scheme FsEvents SYMROOT=%r clean build" %
91
490
                   (proj_path, INSTALL_DIR))
505
                   (objc_path, INSTALL_DIR))
92
491
            retval = subprocess.call(cmd,
506
            retval = subprocess.call(cmd,
93
492
                                     shell=True,
507
                                     shell=True,
94
493
                                     stderr=subprocess.STDOUT,
508
                                     stderr=subprocess.STDOUT,
Status:	Merged
Approved by:	dobey on 2013-02-01
Approved revision:	162
Merged at revision:	160
Proposed branch:	lp:~mikemc/ubuntuone-windows-installer/fix-signing-certname
Merge into:	lp:ubuntuone-windows-installer
Diff against target:	94 lines (+36/-10) 3 files modified scripts/codesign-darwin-verify.sh (+9/-4) scripts/codesign-darwin.sh (+8/-2) scripts/setup-mac.py (+19/-4)
To merge this branch:	bzr merge lp:~mikemc/ubuntuone-windows-installer/fix-signing-certname
Related bugs:	Link a bug report
Reviewer	Date Requested	Status
dobey (community)		Approve on 2013-02-01
Brian Curtin (community)	2013-01-24	Approve on 2013-01-24
Review via email: mp+144820@code.launchpad.net
1	=== modified file 'scripts/codesign-darwin-verify.sh'
2	--- scripts/codesign-darwin-verify.sh 2012-11-20 22:37:34 +0000
3	+++ scripts/codesign-darwin-verify.sh 2013-02-01 21:15:49 +0000
4	@@ -25,9 +25,14 @@
5	25	rm tmp.req	25	rm tmp.req
6	26		26
7	27	echo "\nChecking that the app satisfies the helper's SMAuthorizedClients requirement"	27	echo "\nChecking that the app satisfies the helper's SMAuthorizedClients requirement"
12	28	otool -s __TEXT __info_plist $helper \| grep "^[0-9a-f]\{8,16\}" \| xxd -r - - > tmp.plist	28
13	29	perl -nle 'print "identifier $1 and certificate leaf[subject.CN] = \"$2\"" if /identifier (.) and certificate leaf\[subject.CN\] = "(.)"/;' tmp.plist > tmp.req	29	echo "\nActually skipping that because xxd is really slow for some reason"
14	30	$codesign -v -v -R tmp.req Ubuntu\ One.app	30	# otool -s __TEXT __info_plist $helper \| grep "^[0-9a-f]\{8,16\}" \| xxd -r - - > tmp.plist
15	31	rm tmp.plist tmp.req	31	# perl -nle 'print "identifier $1 and certificate leaf[subject.CN] = \"$2\"" if /identifier (.) and certificate leaf\[subject.CN\] = "(.)"/;' tmp.plist > tmp.req
16			32	# $codesign -v -v -R tmp.req Ubuntu\ One.app
17			33	# rm tmp.plist tmp.req
18			34
19			35	echo "\nChecking spctl rule output, look for 'Developer ID' "
20			36	find ./Ubuntu\ One.app -name "*.app" -print0 \| xargs -0 spctl -a --verbose=9
21	32		37
22	33	echo Done.	38	echo Done.
23	34		39
24	=== modified file 'scripts/codesign-darwin.sh'
25	--- scripts/codesign-darwin.sh 2012-11-20 22:37:34 +0000
26	+++ scripts/codesign-darwin.sh 2013-02-01 21:15:49 +0000
27	@@ -3,7 +3,7 @@
28	3	codesign=/usr/bin/codesign	3	codesign=/usr/bin/codesign
29	4		4
30	5	set -x	5	set -x
32	6	set -e	6
33	7		7
34	8	$codesign -f -s "$@" com.ubuntu.one.fsevents	8	$codesign -f -s "$@" com.ubuntu.one.fsevents
35	9		9
36	@@ -11,6 +11,12 @@
37	11		11
38	12	cp com.ubuntu.one.fsevents "Ubuntu One.app/Contents/Library/LaunchServices/"	12	cp com.ubuntu.one.fsevents "Ubuntu One.app/Contents/Library/LaunchServices/"
39	13		13
41	14	$codesign -f -s "$@" "Ubuntu One.app"	14	find Ubuntu\ One.app -name "*.dylib" -exec $codesign -f -s "$@" {} \;
42			15
43			16	find Ubuntu\ One.app -iname "python" -type f -exec $codesign -f -s "$@" {} \;
44			17
45			18	find Ubuntu\ One.app/Contents -name "*.app" -exec $codesign -f -s "$@" {} \;
46			19
47			20	$codesign -f -s "$@" Ubuntu\ One.app
48	15		21
49	16	echo Done.	22	echo Done.
50	17		23
51	=== modified file 'scripts/setup-mac.py'
52	--- scripts/setup-mac.py 2012-12-10 18:17:41 +0000
53	+++ scripts/setup-mac.py 2013-02-01 21:15:49 +0000
54	@@ -57,7 +57,12 @@
55	57	# NOTE - this needs to be the full CN, not just a substring.	57	# NOTE - this needs to be the full CN, not just a substring.
56	58	# /usr/bin/codesign will find the right cert if you pass it a	58	# /usr/bin/codesign will find the right cert if you pass it a
57	59	# substring, but the rest of the system wants an exact match.	59	# substring, but the rest of the system wants an exact match.
59	60	CODESIGN_CN = "Mac Developer: Michael McCracken (GP72FH8MSU)"	60	if "U1_CODESIGN_CN" not in os.environ:
60			61	print "Must set U1_CODESIGN_CN to the CN of the cert to use in the helper"
61			62	print "Exiting."
62			63	sys.exit()
63			64
64			65	CODESIGN_CN = os.environ["U1_CODESIGN_CN"]
65	61		66
66	62	FSEVENTS_DAEMON_NAME = "com.ubuntu.one.fsevents"	67	FSEVENTS_DAEMON_NAME = "com.ubuntu.one.fsevents"
67	63		68
68	@@ -481,13 +486,23 @@
69	481	print "building fsevents daemon"	486	print "building fsevents daemon"
70	482	log_file_name = os.path.join(INSTALL_DIR,	487	log_file_name = os.path.join(INSTALL_DIR,
71	483	"fsevents-daemon-build.log")	488	"fsevents-daemon-build.log")
72			489
73	484	with open(log_file_name, 'w') as logfile:	490	with open(log_file_name, 'w') as logfile:
74	485	proj_path = os.path.join(self.source_dir,	491	proj_path = os.path.join(self.source_dir,
77	486	"ubuntuone-fsevents-daemon",	492	"ubuntuone-fsevents-daemon")
78	487	"objc")	493	objc_path = os.path.join(proj_path, "objc")
79			494	data_path = os.path.join(proj_path, "data")
80			495	plist_file_name = os.path.join(data_path,
81			496	"fseventsd-Info.plist")
82			497	with open(plist_file_name + ".tmpl", "rb") as infoplist_tmpl:
83			498	plist_tmpl_data = infoplist_tmpl.read()
84			499	plist_data = plist_tmpl_data.replace("@CODESIGN_CN@", CODESIGN_CN)
85			500	with open(plist_file_name, "wb") as infoplist:
86			501	infoplist.write(plist_data)
87			502
88	488	cmd = ("cd %s && "	503	cmd = ("cd %s && "
89	489	"xcodebuild -scheme FsEvents SYMROOT=%r clean build" %	504	"xcodebuild -scheme FsEvents SYMROOT=%r clean build" %
91	490	(proj_path, INSTALL_DIR))	505	(objc_path, INSTALL_DIR))
92	491	retval = subprocess.call(cmd,	506	retval = subprocess.call(cmd,
93	492	shell=True,	507	shell=True,
94	493	stderr=subprocess.STDOUT,	508	stderr=subprocess.STDOUT,