2022-09-14 13:22:58 +00:00
|
|
|
#!/usr/bin/env python3
|
2022-09-10 15:10:27 +00:00
|
|
|
|
|
|
|
import os
|
|
|
|
import subprocess
|
|
|
|
import yaml
|
|
|
|
import argparse
|
|
|
|
|
2022-09-14 16:52:26 +00:00
|
|
|
CONTAINER_IMAGE = "localhost/flutter-build-env"
|
2022-09-10 15:10:27 +00:00
|
|
|
HOST_HOME = "/var/lib/drone-runner-exec"
|
2022-09-14 13:21:46 +00:00
|
|
|
CONTAINER_HOME = "/tmp/builder"
|
2022-09-10 15:10:27 +00:00
|
|
|
|
2022-09-14 21:12:50 +00:00
|
|
|
APP_NAME = "org.selfprivacy.app"
|
2022-09-17 05:59:25 +00:00
|
|
|
APP_NAME_NIGHTLY = "org.selfprivacy.app.nightly"
|
2022-09-10 15:10:27 +00:00
|
|
|
APP_VERSION_FULL = yaml.safe_load(open("pubspec.yaml", "r"))['version']
|
|
|
|
APP_SEMVER = APP_VERSION_FULL[:APP_VERSION_FULL.find("+")]
|
|
|
|
APP_BUILD_ID = APP_VERSION_FULL[APP_VERSION_FULL.find("+"):][1::]
|
2022-09-17 06:24:47 +00:00
|
|
|
APP_BUILD_ID_NIGHTLY = subprocess.run(["git", "rev-list", "--first-parent", "--count", "HEAD"], check=True, stdout=subprocess.PIPE).stdout.decode().strip()
|
2022-09-10 15:10:27 +00:00
|
|
|
|
2022-09-14 13:21:46 +00:00
|
|
|
HOST_MOUNTED_VOLUME = f"{HOST_HOME}/.local/share/containers/storage/volumes/release/_data"
|
2022-09-10 15:10:27 +00:00
|
|
|
|
|
|
|
# Environments
|
|
|
|
|
|
|
|
def podman_offline(dir, *args):
|
2022-09-14 16:52:26 +00:00
|
|
|
subprocess.run(["podman", "run", "--rm", "--network=none", "--cap-add=CHOWN", f"--workdir={dir}",
|
2022-09-14 13:21:46 +00:00
|
|
|
"-v", os.getcwd() + f":{CONTAINER_HOME}/src",
|
|
|
|
"-v", f"{HOST_HOME}/fdroid:{CONTAINER_HOME}/fdroid",
|
2022-09-15 01:21:33 +00:00
|
|
|
"-v", f"{HOST_HOME}/fdroid-keystore:{CONTAINER_HOME}/fdroid-keystore",
|
|
|
|
"-v", f"{HOST_HOME}/standalone-keystore:{CONTAINER_HOME}/standalone-keystore",
|
|
|
|
"-v", f"{HOST_HOME}/google-keystore:{CONTAINER_HOME}/google-keystore",
|
2022-09-15 02:24:54 +00:00
|
|
|
"--env", "FDROID_KEYSTORE_PASS=" + os.environ.get("FDROID_KEYSTORE_PASS"),
|
|
|
|
"--env", "STANDALONE_KEYSTORE_PASS=" + os.environ.get("STANDALONE_KEYSTORE_PASS"),
|
|
|
|
"--env", "GOOGLE_KEYSTORE_PASS=" + os.environ.get("GOOGLE_KEYSTORE_PASS"),
|
2022-09-14 13:25:33 +00:00
|
|
|
"--user", os.getuid().__str__() + ":" + os.getgid().__str__(), "--userns=keep-id",
|
2022-09-10 15:10:27 +00:00
|
|
|
CONTAINER_IMAGE, "bash", "-c", ' '.join(args)
|
2022-09-14 16:58:55 +00:00
|
|
|
], check=True)
|
2022-09-10 15:10:27 +00:00
|
|
|
|
|
|
|
def podman_online(dir, *args):
|
2022-09-14 16:52:26 +00:00
|
|
|
subprocess.run(["podman", "run", "--rm", "--cap-add=CHOWN", f"--workdir={dir}",
|
2022-09-14 13:21:46 +00:00
|
|
|
"-v", os.getcwd() + f":{CONTAINER_HOME}/src",
|
2022-09-14 13:25:33 +00:00
|
|
|
"--user", os.getuid().__str__() + ":" + os.getgid().__str__(), "--userns=keep-id",
|
2022-09-10 15:10:27 +00:00
|
|
|
CONTAINER_IMAGE, "bash", "-c", ' '.join(args)
|
2022-09-14 16:58:55 +00:00
|
|
|
], check=True)
|
2022-09-10 15:10:27 +00:00
|
|
|
|
|
|
|
# Targets
|
|
|
|
|
|
|
|
def build_linux():
|
2022-09-14 18:08:00 +00:00
|
|
|
podman_offline(f"{CONTAINER_HOME}/src", "chown -R $(id -u):$(id -g) /tmp/flutter_pub_cache",
|
|
|
|
"&& flutter pub get --offline",
|
2022-09-14 16:52:26 +00:00
|
|
|
"&& flutter build linux")
|
2022-09-10 15:10:27 +00:00
|
|
|
|
|
|
|
def build_apk():
|
2022-09-14 18:12:02 +00:00
|
|
|
podman_offline(f"{CONTAINER_HOME}/src", "chown -R $(id -u):$(id -g) /tmp/gradle /tmp/flutter_pub_cache",
|
2022-09-14 16:52:26 +00:00
|
|
|
"&& flutter pub get --offline",
|
2022-09-14 22:11:05 +00:00
|
|
|
"&& flutter build apk --flavor production")
|
2022-09-15 01:21:33 +00:00
|
|
|
def build_bundle():
|
|
|
|
podman_offline(f"{CONTAINER_HOME}/src", "chown -R $(id -u):$(id -g) /tmp/gradle /tmp/flutter_pub_cache",
|
|
|
|
"&& flutter pub get --offline",
|
|
|
|
"&& flutter build appbundle --flavor production")
|
2022-09-10 15:10:27 +00:00
|
|
|
|
|
|
|
def sign_apk_standalone():
|
2022-09-14 13:21:46 +00:00
|
|
|
podman_offline(f"{CONTAINER_HOME}/src",
|
2022-09-14 22:11:05 +00:00
|
|
|
"zipalign -f -v 4 build/app/outputs/flutter-apk/app-production-release.apk",
|
2022-09-10 15:10:27 +00:00
|
|
|
f"standalone_{APP_NAME}-{APP_SEMVER}.apk")
|
2022-09-14 20:30:07 +00:00
|
|
|
podman_offline(f"{CONTAINER_HOME}/src",
|
2022-09-15 01:21:33 +00:00
|
|
|
f"apksigner sign --ks {CONTAINER_HOME}/standalone-keystore --ks-key-alias standalone --ks-pass",
|
2022-09-10 15:10:27 +00:00
|
|
|
f"env:STANDALONE_KEYSTORE_PASS standalone_{APP_NAME}-{APP_SEMVER}.apk")
|
|
|
|
|
|
|
|
def sign_apk_fdroid():
|
|
|
|
podman_offline(f"{CONTAINER_HOME}/fdroid", f"rm -rf {CONTAINER_HOME}/fdroid/unsigned/*")
|
|
|
|
podman_offline(f"{CONTAINER_HOME}/fdroid",
|
|
|
|
f"test ! -f {CONTAINER_HOME}/fdroid/repo/{APP_NAME}_{APP_BUILD_ID}.apk",
|
2022-09-14 22:11:05 +00:00
|
|
|
"&& cp ../src/build/app/outputs/flutter-apk/app-production-release.apk",
|
2022-09-10 15:10:27 +00:00
|
|
|
f"unsigned/{APP_NAME}_{APP_BUILD_ID}.apk || echo exist")
|
|
|
|
podman_offline(f"{CONTAINER_HOME}/fdroid", "fdroid publish")
|
|
|
|
podman_offline(f"{CONTAINER_HOME}/fdroid", "fdroid update")
|
|
|
|
|
2022-09-17 05:59:25 +00:00
|
|
|
def sign_apk_fdroid_nightly():
|
|
|
|
podman_offline(f"{CONTAINER_HOME}/fdroid", f"rm -rf {CONTAINER_HOME}/fdroid/unsigned/*")
|
|
|
|
podman_offline(f"{CONTAINER_HOME}/fdroid",
|
|
|
|
f"test ! -f {CONTAINER_HOME}/fdroid/repo/{APP_NAME_NIGHTLY}_{APP_BUILD_ID_NIGHTLY}.apk",
|
2022-09-17 06:04:56 +00:00
|
|
|
"&& cp ../src/build/app/outputs/flutter-apk/app-nightly-debug.apk",
|
2022-09-17 06:09:47 +00:00
|
|
|
f"unsigned/{APP_NAME_NIGHTLY}_{APP_BUILD_ID_NIGHTLY}.apk || echo exist")
|
2022-09-17 05:59:25 +00:00
|
|
|
podman_offline(f"{CONTAINER_HOME}/fdroid", "fdroid publish")
|
|
|
|
podman_offline(f"{CONTAINER_HOME}/fdroid", "fdroid update")
|
|
|
|
|
2022-09-15 16:46:44 +00:00
|
|
|
def sign_bundle():
|
|
|
|
podman_offline(f"{CONTAINER_HOME}/src",
|
2022-09-15 21:04:46 +00:00
|
|
|
f"jarsigner -sigalg SHA256withRSA -digestalg SHA-256 -keystore {CONTAINER_HOME}/google-keystore -signedjar {APP_NAME}-{APP_SEMVER}.aab -storepass:env GOOGLE_KEYSTORE_PASS build/app/outputs/bundle/productionRelease/app-production-release.aab google")
|
2022-09-15 16:46:44 +00:00
|
|
|
|
2022-09-10 15:10:27 +00:00
|
|
|
def package_linux_appimage():
|
|
|
|
podman_online(f"{CONTAINER_HOME}/src", "appimage-builder --recipe appimage.yml")
|
|
|
|
|
|
|
|
def package_linux_flatpak():
|
2022-09-14 16:58:55 +00:00
|
|
|
subprocess.run(["flatpak-builder", "--force-clean", "--repo=flatpak-repo", "flatpak-build", "flatpak.yml"], check=True)
|
2022-09-14 23:33:02 +00:00
|
|
|
subprocess.run(["flatpak", "build-bundle", "flatpak-repo", f"{APP_NAME}-{APP_SEMVER}.flatpak", f"{APP_NAME}"], check=True)
|
2022-09-10 15:10:27 +00:00
|
|
|
|
|
|
|
def package_linux_archive():
|
|
|
|
podman_online(f"{CONTAINER_HOME}/src", f"tar -C build/linux/x64/release/bundle -vacf {APP_NAME}-{APP_SEMVER}.tar.zstd .")
|
|
|
|
|
|
|
|
def deploy_gitea_release():
|
|
|
|
subprocess.run(["tea", "login", "add", "--token", os.environ.get('GITEA_RELEASE_TOKEN'),
|
2022-09-14 16:58:55 +00:00
|
|
|
"--url", "https://git.selfprivacy.org"], check=True)
|
2022-09-10 15:10:27 +00:00
|
|
|
subprocess.run(["tea", "releases", "create", "--repo", os.environ.get('DRONE_REPO'),
|
|
|
|
"--tag", os.environ.get('DRONE_SEMVER'), "--title", os.environ.get('DRONE_SEMVER'),
|
2022-09-14 13:21:46 +00:00
|
|
|
"--asset", f"{HOST_MOUNTED_VOLUME}/standalone_{APP_NAME}-{APP_SEMVER}.apk",
|
|
|
|
"--asset", f"{HOST_MOUNTED_VOLUME}/standalone_{APP_NAME}-{APP_SEMVER}.apk.idsig",
|
2022-09-10 15:10:27 +00:00
|
|
|
"--asset", f"{HOST_MOUNTED_VOLUME}/SelfPrivacy-{APP_SEMVER}-x86_64.AppImage",
|
|
|
|
"--asset", f"{HOST_MOUNTED_VOLUME}/SelfPrivacy-{APP_SEMVER}-x86_64.AppImage.zsync",
|
|
|
|
"--asset", f"{HOST_MOUNTED_VOLUME}/{APP_NAME}-{APP_SEMVER}.flatpak",
|
2022-09-14 16:58:55 +00:00
|
|
|
"--asset", f"{HOST_MOUNTED_VOLUME}/{APP_NAME}-{APP_SEMVER}.tar.zstd"], check=True)
|
2022-09-10 15:10:27 +00:00
|
|
|
|
|
|
|
def deploy_fdroid_repo():
|
|
|
|
subprocess.run([f"""eval $(ssh-agent -s) &&
|
|
|
|
echo \"$SSH_PRIVATE_KEY\" | tr -d '\r' | ssh-add - &&
|
|
|
|
scp -oStrictHostKeyChecking=no -oUserKnownHostsFile=/dev/null -r {HOST_HOME}/fdroid/repo/* deployer@selfprivacy.org:/var/www/fdroid.selfprivacy.org
|
2022-09-14 16:58:55 +00:00
|
|
|
"""], shell=True, check=True)
|
2022-09-10 15:10:27 +00:00
|
|
|
|
2022-09-14 13:21:46 +00:00
|
|
|
def ci_build_linux():
|
2022-09-14 18:08:00 +00:00
|
|
|
podman_online(f"{CONTAINER_HOME}/src", "chown -R $(id -u):$(id -g) /tmp/flutter_pub_cache",
|
|
|
|
"&& flutter build linux --debug")
|
2022-09-14 13:21:46 +00:00
|
|
|
|
|
|
|
def ci_build_apk():
|
2022-09-14 18:12:02 +00:00
|
|
|
podman_online(f"{CONTAINER_HOME}/src", "chown -R $(id -u):$(id -g) /tmp/gradle /tmp/flutter_pub_cache",
|
2022-09-14 21:12:50 +00:00
|
|
|
"&& flutter build apk --flavor nightly --debug")
|
2022-09-14 13:21:46 +00:00
|
|
|
|
|
|
|
def ci_run_tests():
|
2022-09-14 21:05:44 +00:00
|
|
|
podman_online(f"{CONTAINER_HOME}/src", "flutter test",
|
|
|
|
"&& flutter test --machine --coverage > tests.output")
|
2022-09-10 15:10:27 +00:00
|
|
|
|
|
|
|
# Arguments
|
|
|
|
|
|
|
|
if __name__ == "__main__":
|
|
|
|
parser = argparse.ArgumentParser()
|
|
|
|
group = parser.add_mutually_exclusive_group()
|
2022-09-14 16:52:26 +00:00
|
|
|
group.add_argument("--build-linux", action="store_true")
|
|
|
|
group.add_argument("--build-apk", action="store_true")
|
2022-09-15 16:46:44 +00:00
|
|
|
group.add_argument("--build-bundle", action="store_true")
|
2022-09-10 15:10:27 +00:00
|
|
|
group.add_argument("--sign-apk-standalone", action="store_true", help="depends on $STANDALONE_KEYSTORE_PASS")
|
|
|
|
group.add_argument("--sign-apk-fdroid", action="store_true", help="depends on $FDROID_KEYSTORE_PASS")
|
2022-09-17 05:59:25 +00:00
|
|
|
group.add_argument("--sign-apk-fdroid-nightly", action="store_true", help="depends on $FDROID_KEYSTORE_PASS")
|
2022-09-15 16:46:44 +00:00
|
|
|
group.add_argument("--sign-bundle", action="store_true", help="depends on $GOOGLE_KEYSTORE_PASS")
|
2022-09-10 15:10:27 +00:00
|
|
|
group.add_argument("--package-linux-appimage", action="store_true")
|
|
|
|
group.add_argument("--package-linux-flatpak", action="store_true")
|
|
|
|
group.add_argument("--package-linux-archive", action="store_true")
|
|
|
|
group.add_argument("--deploy-gitea-release", action="store_true", help="depends on $GITEA_RELEASE_TOKEN")
|
|
|
|
group.add_argument("--deploy-fdroid-repo", action="store_true", help="depends on $SSH_PRIVATE_KEY")
|
2022-09-14 13:21:46 +00:00
|
|
|
group.add_argument("--ci-build-linux", action="store_true")
|
|
|
|
group.add_argument("--ci-build-apk", action="store_true")
|
|
|
|
group.add_argument("--ci-run-tests", action="store_true")
|
2022-09-10 15:10:27 +00:00
|
|
|
args = parser.parse_args()
|
|
|
|
|
|
|
|
if args.build_linux:
|
|
|
|
build_linux()
|
|
|
|
elif args.build_apk:
|
|
|
|
build_apk()
|
2022-09-15 01:23:14 +00:00
|
|
|
elif args.build_bundle:
|
|
|
|
build_bundle()
|
2022-09-10 15:10:27 +00:00
|
|
|
elif args.sign_apk_standalone:
|
|
|
|
sign_apk_standalone()
|
|
|
|
elif args.sign_apk_fdroid:
|
|
|
|
sign_apk_fdroid()
|
2022-09-17 05:59:25 +00:00
|
|
|
elif args.sign_apk_fdroid_nightly:
|
|
|
|
sign_apk_fdroid_nightly()
|
2022-09-15 16:47:39 +00:00
|
|
|
elif args.sign_bundle:
|
2022-09-15 20:50:42 +00:00
|
|
|
sign_bundle()
|
2022-09-10 15:10:27 +00:00
|
|
|
elif args.package_linux_appimage:
|
|
|
|
package_linux_appimage()
|
|
|
|
elif args.package_linux_flatpak:
|
|
|
|
package_linux_flatpak()
|
|
|
|
elif args.package_linux_archive:
|
|
|
|
package_linux_archive()
|
|
|
|
elif args.deploy_gitea_release:
|
|
|
|
deploy_gitea_release()
|
|
|
|
elif args.deploy_fdroid_repo:
|
|
|
|
deploy_fdroid_repo()
|
2022-09-14 13:21:46 +00:00
|
|
|
elif args.ci_build_linux:
|
|
|
|
ci_build_linux()
|
|
|
|
elif args.ci_build_apk:
|
|
|
|
ci_build_apk()
|
|
|
|
elif args.ci_run_tests:
|
|
|
|
ci_run_tests()
|