diff options
| author | Andrej Mihajlov <and@mullvad.net> | 2021-05-21 15:45:17 +0200 |
|---|---|---|
| committer | Andrej Mihajlov <and@mullvad.net> | 2021-05-21 15:45:17 +0200 |
| commit | 17a399fb9e271c9adaac4323749361bcbe39bc84 (patch) | |
| tree | fce3852bf35aa1c5c92509d8a581864d78a358be /ios | |
| parent | c3cfd95a07adce3ab9acd0a1c17632231a8b80a2 (diff) | |
| parent | f1005c14c312f1d8691c4265d00352ea48ea8a01 (diff) | |
| download | mullvadvpn-17a399fb9e271c9adaac4323749361bcbe39bc84.tar.xz mullvadvpn-17a399fb9e271c9adaac4323749361bcbe39bc84.zip | |
Merge branch 'update-build-instructions'
Diffstat (limited to 'ios')
| -rw-r--r-- | ios/BuildInstructions.md | 41 |
1 files changed, 36 insertions, 5 deletions
diff --git a/ios/BuildInstructions.md b/ios/BuildInstructions.md index 4c73601ee3..340a116f76 100644 --- a/ios/BuildInstructions.md +++ b/ios/BuildInstructions.md @@ -36,7 +36,7 @@ openssl req -new \ WWDR certificate is used to verify the development and distribution certificates issued by Apple. ``` -curl https://developer.apple.com/certificationauthority/AppleWWDRCA.cer -O +curl https://www.apple.com/certificateauthority/AppleWWDRCAG3.cer -O ``` # Convert certificates to PEM format @@ -47,8 +47,8 @@ openssl x509 -inform der -outform pem \ -out distribution.pem openssl x509 -inform der -outform pem \ - -in AppleWWDRCA.cer \ - -out AppleWWDRCA.pem + -in AppleWWDRCAG3.cer \ + -out AppleWWDRCAG3.pem ``` # Export private key and certificates @@ -67,11 +67,42 @@ scratch. openssl pkcs12 -export \ -inkey private_key.pem \ -in distribution.pem \ - -certfile AppleWWDRCA.pem \ + -certfile AppleWWDRCAG3.pem \ -out apple_code_signing.p12 \ -name "<FRIENDLY_KEYCHAIN_NAME>" ``` +# Remove old private key and certificates from Keychain + +__Skip this section if you create the private key for the very first time.__ + +If you happen to re-create the keys, you will have to remove the old keys and certificates from +Keychain. + +You can list all certificates with corresponding keys by using the following command: + +``` +security find-identity +``` + +You'll get a list of identities that looks like that: + +``` +Valid identities only +1) <HASH_ID> "Apple Distribution: <COMPANY NAME> (<TEAM ID>)" +2) <HASH_ID> "Apple Development: <COMPANY NAME> (<TEAM ID>)" +``` + +Pick the one that you don't want anymore and copy the `<HASH_ID>` from the output, then paste into +the command below: + +``` +security delete-identity -Z <HASH_ID> +``` + +This should take care of removing both private keys and certificates. Repeat as many times as needed +if you wish to remove multiple identities. + # Import private key and certificates into Keychain ``` @@ -93,7 +124,7 @@ securely stored in Keychain now. ``` rm distribution.{pem,cer} \ - AppleWWDRCA.{pem,cer} \ + AppleWWDRCAG3.{pem,cer} \ cert_signing_request \ apple_code_signing.p12 \ private_key.pem |