wix installer is also signed (#3266)

2024-12-03 02:09:50 +03:00 · 2022-01-23 21:50:05 +01:00 · 2022-01-23 21:50:05 +01:00 · d801cc89b8
commit d801cc89b8
parent 529912515e
2 changed files with 31 additions and 20 deletions
--- a/.changes/wix-signing.md
+++ b/.changes/wix-signing.md
@ -0,0 +1,5 @@
 ---
 "tauri-bundler": patch
 ---
 Sign WiX installer in addition to the executable file.
--- a/tooling/bundler/src/bundle/windows/msi/wix.rs
+++ b/tooling/bundler/src/bundle/windows/msi/wix.rs
@ -387,11 +387,11 @@ pub fn build_wix_app_installer(
    .find(|bin| bin.main())
    .ok_or_else(|| anyhow::anyhow!("Failed to get main binary"))?;
  let app_exe_source = settings.binary_path(main_binary);
-
+  let try_sign = |file_path: &PathBuf| -> crate::Result<()> {
    if let Some(certificate_thumbprint) = &settings.windows().certificate_thumbprint {
-    common::print_info("signing app")?;
+      common::print_info(&format!("signing {}", file_path.display()))?;
      sign(
-      &app_exe_source,
+        &file_path,
        &SignParams {
          digest_algorithm: settings
            .windows()
@ -408,6 +408,11 @@ pub fn build_wix_app_installer(
        },
      )?;
    }
    Ok(())
  };
  common::print_info("trying to sign app")?;
  try_sign(&app_exe_source)?;
  // ensure that `target/{release, debug}/wix` folder exists
  std::fs::create_dir_all(settings.project_out_directory().join("wix"))?;
@ -653,6 +658,7 @@ pub fn build_wix_app_installer(
    settings,
  )?;
  rename(&msi_output_path, &msi_path)?;
  try_sign(&msi_path)?;
  Ok(msi_path)
 }