Skip to content

Commit 16eec17

Browse files
chrisd8088chrisd8088
committed
Makefile: update Windows signing certificate hash
The Git LFS signing certificate for Windows binaries has changed, so we update the default signing certificate SHA-1 hash in the Makefile. (The last update was in 2019 in PR git-lfs#3623.) The commands used to generate this hash were: openssl pkcs12 -info -in codesign.pfx -out foo.pem openssl x509 -text -in foo.pem -fingerprint | \ grep Fingerprint | sed 's/^SHA1 Fingerprint=//' | \ sed 's/://g' | tr [:upper:] [:lower:] h/t kb2204 for the info on the fingerprint
1 parent 2fee8da commit 16eec17

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

Makefile

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -68,7 +68,7 @@ TAR_XFORM_CMD ?= $(shell tar --version | grep -q 'GNU tar' && echo 's')
6868

6969
# CERT_SHA1 is the SHA-1 hash of the Windows code-signing cert to use. The
7070
# actual signature is made with SHA-256.
71-
CERT_SHA1 ?= 824455beeb23fe270e756ca04ec8e902d19c62aa
71+
CERT_SHA1 ?= 27ea8f81ce920bccd2174e3b272f2ba247605be6
7272

7373
# CERT_FILE is the PKCS#12 file holding the certificate.
7474
CERT_FILE ?=

0 commit comments

Comments
 (0)