Skip to content

Commit

Permalink
Merge pull request #3772 from ripcurlx/add-windows-signing
Browse files Browse the repository at this point in the history
Add command for signing windows executables with the default code signing certificate
  • Loading branch information
sqrrm authored Dec 16, 2019
2 parents 65d3dd3 + bb598b7 commit db6c13a
Showing 1 changed file with 6 additions and 0 deletions.
6 changes: 6 additions & 0 deletions desktop/package/windows/package.bat
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,9 @@
:: - Inno Setup unicode installed (http://www.jrsoftware.org/isdl.php)
:: - OracleJDK 10 installed
:: Note: OpenJDK 10 does not have the javapackager util, so must use OracleJDK
:: - Sign Tool installed (https://docs.microsoft.com/en-us/windows/win32/seccrypto/signtool)
:: Note: Sign Tool is part of Windows 10 SDK (https://go.microsoft.com/fwlink/?LinkID=698771)
:: - Code signing certificate installed
:: Prior to running this script:
:: - Update version below
:: - Ensure JAVA_HOME below is pointing to OracleJDK 10 directory
Expand Down Expand Up @@ -115,6 +118,9 @@ if not exist "%package_dir%\windows\Bisq-%version%.exe" (
exit /B 3
)

echo Signing executable with default Code Signing Certificate
call "C:\Program Files (x86)\Windows Kits\10\App Certification Kit\signtool.exe" sign /v /fd SHA256 /a "Bisq-%version%.exe"

echo SHA256 of %package_dir%\windows\Bisq-%version%.exe:
for /F "delims=" %%h in ('certutil -hashfile "%package_dir%\windows\Bisq-%version%.exe" SHA256 ^| findstr -i -v "SHA256" ^| findstr -i -v "certutil"') do (set hash=%%h)
echo %hash%
Expand Down

0 comments on commit db6c13a

Please sign in to comment.