Using Twocanoes’ Signing Manager to sign AutoPkg-built installer packages
2021-03-07 08:11:57 Author: derflounder.wordpress.com(查看原文) 阅读量:269 收藏
2021-03-07 08:11:57 Author: derflounder.wordpress.com(查看原文) 阅读量:269 收藏
| Processing local.pkg.Postman… | |
| {'AUTOPKG_VERSION': '2.3.1', | |
| 'DOWNLOAD_URL': 'https://dl.pstmn.io/download/latest/osx', | |
| 'NAME': 'Postman', | |
| 'PARENT_RECIPES': ['/Users/username/Library/AutoPkg/RecipeRepos/com.github.rtrouton.signing_manager_autopkg_recipes/Postman/Postman.pkg.recipe', | |
| '/Users/username/Library/AutoPkg/RecipeRepos/com.github.autopkg.dataJAR-recipes/Postman/Postman.download.recipe'], | |
| 'RECIPE_CACHE_DIR': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman', | |
| 'RECIPE_DIR': '/Users/username/Library/AutoPkg/RecipeOverrides', | |
| 'RECIPE_OVERRIDE_DIRS': ['~/Library/AutoPkg/RecipeOverrides'], | |
| 'RECIPE_PATH': '/Users/username/Library/AutoPkg/RecipeOverrides/Postman.pkg.recipe', | |
| 'RECIPE_REPOS': {'/Users/username/Library/AutoPkg/RecipeRepos/com.github.autopkg.dataJAR-recipes': {'URL': 'https://github.com/autopkg/dataJAR-recipes'}, | |
| '/Users/username/Library/AutoPkg/RecipeRepos/com.github.autopkg.hjuutilainen-recipes': {'URL': 'https://github.com/autopkg/hjuutilainen-recipes'}, | |
| '/Users/username/Library/AutoPkg/RecipeRepos/com.github.rtrouton.signing_manager_autopkg_recipes': {'URL': 'https://github.com/rtrouton/signing_manager_autopkg_recipes'}}, | |
| 'RECIPE_SEARCH_DIRS': ['.', | |
| '~/Library/AutoPkg/Recipes', | |
| '/Library/AutoPkg/Recipes', | |
| '/Users/username/Library/AutoPkg/RecipeRepos/com.github.rtrouton.signing_manager_autopkg_recipes', | |
| '/Users/username/Library/AutoPkg/RecipeRepos/com.github.autopkg.hjuutilainen-recipes', | |
| '/Users/username/Library/AutoPkg/RecipeRepos/com.github.autopkg.dataJAR-recipes', | |
| '/Users/username/Library/AutoPkg/RecipeOverrides', | |
| '/Users/username/Library/AutoPkg/RecipeRepos/com.github.rtrouton.signing_manager_autopkg_recipes/Postman', | |
| '/Users/username/Library/AutoPkg/RecipeRepos/com.github.rtrouton.signing_manager_autopkg_recipes/Postman', | |
| '/Users/username/Library/AutoPkg/RecipeRepos/com.github.rtrouton.signing_manager_autopkg_recipes/Postman'], | |
| 'SIGNINGCERTIFICATE': '4A72196F535A51A98FF2480132F024222B65060C', | |
| 'SOFTWARETITLE': 'Labs', | |
| 'SOFTWARETYPE': 'Postman', | |
| 'VENDOR': 'Postman', | |
| 'verbose': 4} | |
| URLDownloader | |
| {'Input': {'filename': 'Postman.zip', | |
| 'url': 'https://dl.pstmn.io/download/latest/osx'}} | |
| URLDownloader: No value supplied for prefetch_filename, setting default value of: False | |
| URLDownloader: No value supplied for CHECK_FILESIZE_ONLY, setting default value of: False | |
| URLDownloader: Curl command: ['/usr/bin/curl', '–silent', '–show-error', '–no-buffer', '–dump-header', '-', '–speed-time', '30', '–location', '–url', 'https://dl.pstmn.io/download/latest/osx', '–fail', '–output', '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/downloads/tmpgnvvfjc8'] | |
| URLDownloader: Downloaded /Users/username/Library/AutoPkg/Cache/local.pkg.Postman/downloads/Postman.zip | |
| {'Output': {'download_changed': True, | |
| 'pathname': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/downloads/Postman.zip', | |
| 'url_downloader_summary_result': {'data': {'download_path': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/downloads/Postman.zip'}, | |
| 'summary_text': 'The following ' | |
| 'new items were ' | |
| 'downloaded:'}}} | |
| EndOfCheckPhase | |
| {'Input': {}} | |
| {'Output': {}} | |
| Unarchiver | |
| {'Input': {'archive_path': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/downloads/Postman.zip', | |
| 'destination_path': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman', | |
| 'purge_destination': True}} | |
| Unarchiver: No value supplied for USE_PYTHON_NATIVE_EXTRACTOR, setting default value of: False | |
| Unarchiver: Guessed archive format 'zip' from filename Postman.zip | |
| Unarchiver: Unarchived /Users/username/Library/AutoPkg/Cache/local.pkg.Postman/downloads/Postman.zip to /Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman | |
| {'Output': {}} | |
| CodeSignatureVerifier | |
| {'Input': {'input_path': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman/Postman.app', | |
| 'requirement': 'identifier "com.postmanlabs.mac" and anchor apple ' | |
| 'generic and certificate ' | |
| '1[field.1.2.840.113635.100.6.2.6] /* exists */ and ' | |
| 'certificate leaf[field.1.2.840.113635.100.6.1.13] ' | |
| '/* exists */ and certificate leaf[subject.OU] = ' | |
| 'H7H8Q7M5CK'}} | |
| CodeSignatureVerifier: Verifying code signature… | |
| CodeSignatureVerifier: Deep verification enabled… | |
| CodeSignatureVerifier: Strict verification not defined. Using codesign defaults… | |
| CodeSignatureVerifier: /Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman/Postman.app: valid on disk | |
| CodeSignatureVerifier: /Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman/Postman.app: satisfies its Designated Requirement | |
| CodeSignatureVerifier: /Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman/Postman.app: explicit requirement satisfied | |
| CodeSignatureVerifier: Signature is valid | |
| {'Output': {}} | |
| Versioner | |
| {'Input': {'input_plist_path': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman/Postman.app/Contents/Info.plist', | |
| 'plist_version_key': 'CFBundleShortVersionString'}} | |
| Versioner: No value supplied for skip_single_root_dir, setting default value of: False | |
| Versioner: Found version 8.0.6 in file /Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman/Postman.app/Contents/Info.plist | |
| {'Output': {'version': '8.0.6'}} | |
| StopProcessingIf | |
| {'Input': {'predicate': 'SIGNINGCERTIFICATE == ' | |
| '"Put_Signing_Certificate_into_AutoPkg_recipe_override"'}} | |
| StopProcessingIf: (SIGNINGCERTIFICATE == "Put_Signing_Certificate_into_AutoPkg_recipe_override") is False | |
| {'Output': {}} | |
| PkgRootCreator | |
| {'Input': {'pkgdirs': {'Applications': '0755'}, | |
| 'pkgroot': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman'}} | |
| PkgRootCreator: Created /Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman | |
| PkgRootCreator: Creating Applications | |
| PkgRootCreator: Created /Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman/Applications | |
| {'Output': {}} | |
| Unarchiver | |
| {'Input': {'USE_PYTHON_NATIVE_EXTRACTOR': False, | |
| 'archive_path': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/downloads/Postman.zip', | |
| 'destination_path': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman/Applications', | |
| 'purge_destination': True}} | |
| Unarchiver: Guessed archive format 'zip' from filename Postman.zip | |
| Unarchiver: Unarchived /Users/username/Library/AutoPkg/Cache/local.pkg.Postman/downloads/Postman.zip to /Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman/Applications | |
| {'Output': {}} | |
| Versioner | |
| {'Input': {'input_plist_path': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman/Applications/Postman.app/Contents/Info.plist', | |
| 'plist_version_key': 'CFBundleShortVersionString', | |
| 'skip_single_root_dir': False}} | |
| Versioner: Found version 8.0.6 in file /Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman/Applications/Postman.app/Contents/Info.plist | |
| {'Output': {'version': '8.0.6'}} | |
| PkgCreator | |
| {'Input': {'pkg_request': {'chown': [{'group': 'wheel', | |
| 'path': 'Applications', | |
| 'user': 'root'}], | |
| 'id': 'com.postmanlabs.mac', | |
| 'options': 'purge_ds_store', | |
| 'version': '8.0.6'}}} | |
| PkgCreator: Connecting | |
| PkgCreator: Sending packaging request | |
| PkgCreator: Disconnecting | |
| PkgCreator: Failed to close socket: [Errno 9] Bad file descriptor | |
| {'Output': {'new_package_request': True, | |
| 'pkg_creator_summary_result': {'data': {'identifier': 'com.postmanlabs.mac', | |
| 'pkg_path': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman_Labs_Postman_8.0.6.pkg', | |
| 'version': '8.0.6'}, | |
| 'report_fields': ['identifier', | |
| 'version', | |
| 'pkg_path'], | |
| 'summary_text': 'The following ' | |
| 'packages were ' | |
| 'built:'}, | |
| 'pkg_path': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman_Labs_Postman_8.0.6.pkg'}} | |
| PkgSigner | |
| {'Input': {'pkg_path': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman_Labs_Postman_8.0.6.pkg', | |
| 'signing_cert': '4A72196F535A51A98FF2480132F024222B65060C'}} | |
| ['/usr/bin/productsign', '–sign', '4A72196F535A51A98FF2480132F024222B65060C', '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman_Labs_Postman_8.0.6-unsigned.pkg', '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman_Labs_Postman_8.0.6.pkg'] | |
| productsign: signing product with identity "Package Signing" from keychain (null) | |
| productsign: adding certificate "ca.twocanoes.com" | |
| productsign: Wrote signed product archive to /Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman_Labs_Postman_8.0.6.pkg | |
| {'Output': {'pkg_path': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman_Labs_Postman_8.0.6.pkg'}} | |
| PathDeleter | |
| {'Input': {'path_list': ['/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman']}} | |
| PathDeleter: Deleted /Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman | |
| {'Output': {}} | |
| {'AUTOPKG_VERSION': '2.3.1', | |
| 'CHECK_FILESIZE_ONLY': False, | |
| 'DOWNLOAD_URL': 'https://dl.pstmn.io/download/latest/osx', | |
| 'NAME': 'Postman', | |
| 'PARENT_RECIPES': ['/Users/username/Library/AutoPkg/RecipeRepos/com.github.rtrouton.signing_manager_autopkg_recipes/Postman/Postman.pkg.recipe', | |
| '/Users/username/Library/AutoPkg/RecipeRepos/com.github.autopkg.dataJAR-recipes/Postman/Postman.download.recipe'], | |
| 'RECIPE_CACHE_DIR': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman', | |
| 'RECIPE_DIR': '/Users/username/Library/AutoPkg/RecipeOverrides', | |
| 'RECIPE_OVERRIDE_DIRS': ['~/Library/AutoPkg/RecipeOverrides'], | |
| 'RECIPE_PATH': '/Users/username/Library/AutoPkg/RecipeOverrides/Postman.pkg.recipe', | |
| 'RECIPE_REPOS': {'/Users/username/Library/AutoPkg/RecipeRepos/com.github.autopkg.dataJAR-recipes': {'URL': 'https://github.com/autopkg/dataJAR-recipes'}, | |
| '/Users/username/Library/AutoPkg/RecipeRepos/com.github.autopkg.hjuutilainen-recipes': {'URL': 'https://github.com/autopkg/hjuutilainen-recipes'}, | |
| '/Users/username/Library/AutoPkg/RecipeRepos/com.github.rtrouton.signing_manager_autopkg_recipes': {'URL': 'https://github.com/rtrouton/signing_manager_autopkg_recipes'}}, | |
| 'RECIPE_SEARCH_DIRS': ['.', | |
| '~/Library/AutoPkg/Recipes', | |
| '/Library/AutoPkg/Recipes', | |
| '/Users/username/Library/AutoPkg/RecipeRepos/com.github.rtrouton.signing_manager_autopkg_recipes', | |
| '/Users/username/Library/AutoPkg/RecipeRepos/com.github.autopkg.hjuutilainen-recipes', | |
| '/Users/username/Library/AutoPkg/RecipeRepos/com.github.autopkg.dataJAR-recipes', | |
| '/Users/username/Library/AutoPkg/RecipeOverrides', | |
| '/Users/username/Library/AutoPkg/RecipeRepos/com.github.rtrouton.signing_manager_autopkg_recipes/Postman', | |
| '/Users/username/Library/AutoPkg/RecipeRepos/com.github.rtrouton.signing_manager_autopkg_recipes/Postman', | |
| '/Users/username/Library/AutoPkg/RecipeRepos/com.github.rtrouton.signing_manager_autopkg_recipes/Postman'], | |
| 'SIGNINGCERTIFICATE': '4A72196F535A51A98FF2480132F024222B65060C', | |
| 'SOFTWARETITLE': 'Labs', | |
| 'SOFTWARETYPE': 'Postman', | |
| 'USE_PYTHON_NATIVE_EXTRACTOR': False, | |
| 'VENDOR': 'Postman', | |
| 'archive_path': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/downloads/Postman.zip', | |
| 'destination_path': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman/Applications', | |
| 'download_changed': True, | |
| 'etag': '', | |
| 'filename': 'Postman.zip', | |
| 'input_path': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman/Postman.app', | |
| 'input_plist_path': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman/Applications/Postman.app/Contents/Info.plist', | |
| 'last_modified': '', | |
| 'new_package_request': True, | |
| 'path_list': ['/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman'], | |
| 'pathname': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/downloads/Postman.zip', | |
| 'pkg_creator_summary_result': {'data': {'identifier': 'com.postmanlabs.mac', | |
| 'pkg_path': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman_Labs_Postman_8.0.6.pkg', | |
| 'version': '8.0.6'}, | |
| 'report_fields': ['identifier', | |
| 'version', | |
| 'pkg_path'], | |
| 'summary_text': 'The following packages were ' | |
| 'built:'}, | |
| 'pkg_path': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman_Labs_Postman_8.0.6.pkg', | |
| 'pkg_request': {'chown': [{'group': 'wheel', | |
| 'path': 'Applications', | |
| 'user': 'root'}], | |
| 'id': 'com.postmanlabs.mac', | |
| 'infofile': '', | |
| 'options': 'purge_ds_store', | |
| 'pkgdir': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman', | |
| 'pkgname': 'Postman_Labs_Postman_8.0.6', | |
| 'pkgroot': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman', | |
| 'pkgtype': 'flat', | |
| 'resources': '', | |
| 'scripts': '', | |
| 'version': '8.0.6'}, | |
| 'pkgdirs': {'Applications': '0755'}, | |
| 'pkgname': 'Postman_Labs_Postman_8.0.6', | |
| 'pkgroot': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman', | |
| 'plist_version_key': 'CFBundleShortVersionString', | |
| 'predicate': 'SIGNINGCERTIFICATE == ' | |
| '"Put_Signing_Certificate_into_AutoPkg_recipe_override"', | |
| 'prefetch_filename': False, | |
| 'purge_destination': True, | |
| 'requirement': 'identifier "com.postmanlabs.mac" and anchor apple generic and ' | |
| 'certificate 1[field.1.2.840.113635.100.6.2.6] /* exists */ ' | |
| 'and certificate leaf[field.1.2.840.113635.100.6.1.13] /* ' | |
| 'exists */ and certificate leaf[subject.OU] = H7H8Q7M5CK', | |
| 'signing_cert': '4A72196F535A51A98FF2480132F024222B65060C', | |
| 'skip_single_root_dir': False, | |
| 'stop_processing_recipe': False, | |
| 'url': 'https://dl.pstmn.io/download/latest/osx', | |
| 'url_downloader_summary_result': {'data': {'download_path': '/Users/username/Library/AutoPkg/Cache/local.pkg.Postman/downloads/Postman.zip'}, | |
| 'summary_text': 'The following new items ' | |
| 'were downloaded:'}, | |
| 'verbose': 4, | |
| 'version': '8.0.6'} | |
| Receipt written to /Users/username/Library/AutoPkg/Cache/local.pkg.Postman/receipts/local.pkg-receipt-20210305-130108.plist | |
| The following new items were downloaded: | |
| Download Path | |
| ————- | |
| /Users/username/Library/AutoPkg/Cache/local.pkg.Postman/downloads/Postman.zip | |
| The following packages were built: | |
| Identifier Version Pkg Path | |
| ———- ——- ——– | |
| com.postmanlabs.mac 8.0.6 /Users/username/Library/AutoPkg/Cache/local.pkg.Postman/Postman_Labs_Postman_8.0.6.pkg |
文章来源: https://derflounder.wordpress.com/2021/03/06/using-twocanoes-signing-manager-to-sign-autopkg-built-installer-packages/
如有侵权请联系:admin#unsafe.sh
如有侵权请联系:admin#unsafe.sh