File tree Expand file tree Collapse file tree 1 file changed +15
-1
lines changed Expand file tree Collapse file tree 1 file changed +15
-1
lines changed Original file line number Diff line number Diff line change @@ -156,6 +156,11 @@ jobs:
156156 security import "$cert_path" -k "$keychain_path" -P "$APPLE_CERTIFICATE_PASSWORD" -T /usr/bin/codesign -T /usr/bin/security
157157 security set-key-partition-list -S apple-tool:,apple: -s -k "$KEYCHAIN_PASSWORD" "$keychain_path"
158158
159+ echo "::group::Imported signing identities"
160+ security find-identity -v -p codesigning "$keychain_path" || true
161+ security find-certificate -a -Z "$keychain_path" || true
162+ echo "::endgroup::"
163+
159164 rm -f "$cert_path"
160165
161166 echo "APPLE_CODESIGN_KEYCHAIN=$keychain_path" >> "$GITHUB_ENV"
@@ -174,11 +179,20 @@ jobs:
174179 keychain_args=()
175180 if [[ -n "${APPLE_CODESIGN_KEYCHAIN:-}" && -f "${APPLE_CODESIGN_KEYCHAIN}" ]]; then
176181 keychain_args+=(--keychain "${APPLE_CODESIGN_KEYCHAIN}")
182+ echo "::group::Signing keychain diagnostics"
183+ security find-identity -v -p codesigning "${APPLE_CODESIGN_KEYCHAIN}" || true
184+ security find-certificate -a -Z "${APPLE_CODESIGN_KEYCHAIN}" || true
185+ echo "::endgroup::"
177186 fi
178187
179188 for binary in codex codex-responses-api-proxy; do
180189 path="target/${{ matrix.target }}/release/${binary}"
181- codesign --force --options runtime --timestamp --sign "$APPLE_CODESIGN_IDENTITY" "${keychain_args[@]}" "$path"
190+ if [[ "${CODESIGN_TEST:-}" == "true" ]]; then
191+ echo "Ad-hoc signing $path (test mode)"
192+ codesign --force --sign - "$path"
193+ else
194+ codesign --force --options runtime --timestamp --sign "$APPLE_CODESIGN_IDENTITY" "${keychain_args[@]}" "$path"
195+ fi
182196 codesign --verify --deep --strict "$path"
183197 done
184198
You can’t perform that action at this time.
0 commit comments