From: Steve Dower <steve.dower@python.org>
Date: Mon, 17 Jan 2022 18:05:16 +0000 (+0000)
Subject: Skip signing side-loadable MSIX for Windows (GH-30644)
X-Git-Tag: v3.11.0a5~229
X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=d6c6e6ba739ee714e5706144853008f1eed446ba;p=thirdparty%2FPython%2Fcpython.git

Skip signing side-loadable MSIX for Windows (GH-30644)

We currently do not release these files, and so there's nothing lost by signing them.
Our code signing certificate is somehow incompatible with signing MSIX files. We may be able to re-enable this when we next renew, or if Microsoft updates their signing tool to work with our certificate.
---

diff --git a/.azure-pipelines/windows-release/stage-pack-msix.yml b/.azure-pipelines/windows-release/stage-pack-msix.yml
index f967cfdbe326..6f3e7a5e5d59 100644
--- a/.azure-pipelines/windows-release/stage-pack-msix.yml
+++ b/.azure-pipelines/windows-release/stage-pack-msix.yml
@@ -96,7 +96,9 @@ jobs:
   displayName: Sign side-loadable MSIX bundles
   dependsOn:
   - Pack_MSIX
-  condition: and(succeeded(), variables['SigningCertificate'])
+  # Our current certificate does not support MSIX signing, so we unconditionally skip this step
+  #condition: and(succeeded(), variables['SigningCertificate'])
+  condition: false
 
   pool:
     name: 'Windows Release'