One more thought: if indeed we're going to try to codesign everything at some
point, in the post-destroot, we'll probably want to ignore errors during that
particular step, i.e. catch the codesign return code and simply raise a warning
instead of bailing out. Ports that *require* signing (and only those) could set
a flag to make that warning an actual error.
I guess `codesign ${destroot.dir}` won't work, right?
BTW, what about the reproducible build principle and the idea of code-signing
everything on the buildbots using an official Apple key? Those seem to be
clearly incompatible...
R.
_______________________________________________
macports-dev mailing list
macports-dev@lists.macosforge.org
https://lists.macosforge.org/mailman/listinfo/macports-dev
