• Type: Improvement
• Resolution: Fixed
• Priority: Minor
• Component/s: packaging
• Labels:

  • testfest

1. 

   windows-installer-signature.png

   28 kB

   2016-03-21 23:07

[JENKINS-33709] Windows installers should be signed by the Jenkins project

Collapse comment: Andrew Bayer added a comment - 2016-03-21 23:22

Andrew Bayer added a comment - 2016-03-21 23:22

So!

Windows code signing certs can only be issued to either individuals or corporate entities. Since the Jenkins project is not a corporate entity, it can't be issued a certificate. SPI is a corporate entity, but, so far as I can tell, is not willing to play that role for its projects when it comes to code signing certs. We should really try contacting LibreOffice (also at SPI) to see how they do it...

Expand comment: Andrew Bayer added a comment - 2016-03-21 23:22

Andrew Bayer added a comment - 2016-03-21 23:22 So! Windows code signing certs can only be issued to either individuals or corporate entities. Since the Jenkins project is not a corporate entity, it can't be issued a certificate. SPI is a corporate entity, but, so far as I can tell, is not willing to play that role for its projects when it comes to code signing certs. We should really try contacting LibreOffice (also at SPI) to see how they do it...

Collapse comment: Alex Earl added a comment - 2021-08-28 23:06

Alex Earl added a comment - 2021-08-28 23:06

The installers have been signed for some time now.

Expand comment: Alex Earl added a comment - 2021-08-28 23:06

Alex Earl added a comment - 2021-08-28 23:06 The installers have been signed for some time now.