From 1c164e3ce02465fd197463c0a72dfd804dd4b83e Mon Sep 17 00:00:00 2001 From: Allan Odgaard Date: Tue, 22 Jan 2013 12:08:15 +0100 Subject: [PATCH] Do not timestamp our code signing MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This means that the signature will be invalid when the certificate expires, though it also means that codesign runs faster, and as my certificate is valid for another 4 years, people shouldn’t be using the builds released today when the certificate expires. --- bin/gen_build | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/bin/gen_build b/bin/gen_build index e7e0a7f1..5980a08d 100755 --- a/bin/gen_build +++ b/bin/gen_build @@ -830,7 +830,7 @@ rule run_application description = Run ‘$in’… rule sign_executable - command = codesign -fs "$identity" $in && touch $out + command = codesign --timestamp=none -fs "$identity" $in && touch $out description = Sign ‘$in’… rule tbz_archive