Packaging notes - nohal/OpenCPN GitHub Wiki

Generating a self-signed code-signing certificate

Taken from http://stackoverflow.com/questions/84847/how-do-i-create-a-self-signed-certificate-for-code-signing-on-windows

mkdir \cert
cd \cert

makecert -r -pe -n "CN=Pavel Kalian CA" -ss CA -sr CurrentUser -a sha256 -cy authority -sky signature -sv MyCA.pvk MyCA.cer
certutil -user -addstore Root MyCA.cer

makecert -pe -n "CN=Pavel Kalian,[email protected]" -a sha256 -cy end -sky signature -ic MyCA.cer -iv MyCA.pvk -sv MyOpenCPNSPC.pvk MyOpenCPNSPC.cer

pvk2pfx -pvk MyOpenCPNSPC.pvk -spc MyOpenCPNSPC.cer -pfx MyOpenCPNSPC.pfx

Signing the setup package

signtool sign /v /f \cert\OpenCPNSPC.pfx /d http://www.opencpn.org /t http://timestamp.verisign.com/scripts/timstamp.dll ${CPACK_PACKAGE_FILE_NAME}