bec38ab47b
* Add new version env vars to example * Remove test file * Move CMake packaging to separate module and configure OpenSSL path for Windows * Make VS Code CMake build task default * Generate Microsoft-friendly 4-digit version number * Update macOS bundle .plist with build year variable * Use correct OpenSSL path and fixed various MSI variables * Use correct rest/dist dir for MSI * Add version .rc file for Windows * Use macro instead of over-complicated version query command * Made cmd_utils more secure by defaulting to no-shell and no-print * Add certificate management module * Implement packaging script on Windows * Refactor Mac packaging script to use new cmd_utils args and new cert module * Update ChangeLog * Change PFX env vars and add to CI * Use import as instead of from lib to solve resolve issue * Allow custom certificate extensions * Check for package version when using gdrive * Make version number required * Add missing shell * Add missing gdrive value in test * Find OpenSSL dir based on openssl binary * Only use first OpenSSL entry * More verbose logging * Improve logging * Only use env var if not empty * Fixed wrong var * Fixed macOS GitHub artefact name * Change filename format to match new convention
233 lines
6.8 KiB
Python
233 lines
6.8 KiB
Python
import ctypes, sys, os, shutil
|
|
import xml.etree.ElementTree as ET
|
|
import lib.cmd_utils as cmd_utils
|
|
import lib.env as env
|
|
from lib.certificate import Certificate
|
|
|
|
msbuild_cmd = "msbuild"
|
|
signtool_cmd = "signtool"
|
|
certutil_cmd = "certutil"
|
|
cmake_env_var = "CMAKE_PREFIX_PATH"
|
|
runner_temp_env_var = "RUNNER_TEMP"
|
|
qt_base_dir_env_var = "QT_BASE_DIR"
|
|
dist_dir = "dist"
|
|
build_dir = "build"
|
|
wix_solution_file = f"{build_dir}/installer/Synergy.sln"
|
|
installer_file = f"{build_dir}/installer/bin/Release/Synergy.msi"
|
|
|
|
|
|
def relaunch_as_admin(script):
|
|
args = " ".join(sys.argv[1:])
|
|
command = f"{script} --pause-on-exit {args}"
|
|
print(f"Re-launching script as admin: {command}")
|
|
ctypes.windll.shell32.ShellExecuteW(None, "runas", sys.executable, command, None, 1)
|
|
|
|
|
|
def is_admin():
|
|
"""Returns True if the current process has admin privileges."""
|
|
try:
|
|
return ctypes.windll.shell32.IsUserAnAdmin()
|
|
except ctypes.WinError:
|
|
return False
|
|
|
|
|
|
def set_env_var(name, value):
|
|
"""
|
|
Sets or updates an environment variable. Appends the value if it doesn't already exist.
|
|
|
|
Args:
|
|
name (str): The name of the environment variable.
|
|
value (str): The value of the environment variable.
|
|
"""
|
|
|
|
current_value = os.getenv(name, "")
|
|
|
|
if value not in current_value:
|
|
new_value = f"{current_value}{os.pathsep}{value}" if current_value else value
|
|
os.environ[name] = new_value
|
|
print(f"Setting environment variable: {name}={value}")
|
|
cmd_utils.run(["setx", name, new_value], check=True, shell=True, print_cmd=True)
|
|
|
|
|
|
def package(filename_base):
|
|
cert_base64 = env.get_env_var("WINDOWS_PFX_CERTIFICATE")
|
|
cert_password = env.get_env_var("WINDOWS_PFX_PASSWORD")
|
|
|
|
sign_binaries(cert_base64, cert_password)
|
|
build_msi(filename_base)
|
|
sign_msi(filename_base, cert_base64, cert_password)
|
|
|
|
|
|
def assert_vs_cmd(cmd):
|
|
has_cmd = cmd_utils.has_command(cmd)
|
|
if not has_cmd:
|
|
raise RuntimeError(
|
|
f"The '{cmd}' command was not found, "
|
|
"re-run from 'Developer Command Prompt for VS'"
|
|
)
|
|
|
|
|
|
def build_msi(filename_base):
|
|
print("Building MSI installer...")
|
|
configuration = "Release"
|
|
platform = "x64"
|
|
|
|
assert_vs_cmd(msbuild_cmd)
|
|
cmd_utils.run(
|
|
[
|
|
msbuild_cmd,
|
|
wix_solution_file,
|
|
f"/p:Configuration={configuration}",
|
|
f"/p:Platform={platform}",
|
|
],
|
|
shell=True,
|
|
print_cmd=True,
|
|
)
|
|
|
|
path = get_package_path(filename_base)
|
|
print(f"Copying MSI installer to {dist_dir}")
|
|
os.makedirs(dist_dir, exist_ok=True)
|
|
shutil.copy(installer_file, path)
|
|
|
|
|
|
def get_package_path(filename_base):
|
|
return f"{dist_dir}/{filename_base}.msi"
|
|
|
|
|
|
def sign_binaries(cert_base64, cert_password):
|
|
exe_pattern = f"{build_dir}/bin/*.exe"
|
|
run_codesign(exe_pattern, cert_base64, cert_password)
|
|
|
|
|
|
def sign_msi(filename_base, cert_base64, cert_password):
|
|
path = get_package_path(filename_base)
|
|
run_codesign(path, cert_base64, cert_password)
|
|
|
|
|
|
def run_codesign(path, cert_base64, cert_password):
|
|
time_server = "http://timestamp.digicert.com"
|
|
hashing_algorithm = "SHA256"
|
|
|
|
with Certificate(cert_base64, "pfx") as cert_path:
|
|
print("Signing MSI installer...")
|
|
assert_vs_cmd(signtool_cmd)
|
|
|
|
# WARNING: contains private key password, never print this command
|
|
cmd_utils.run(
|
|
[
|
|
signtool_cmd,
|
|
"sign",
|
|
"/f",
|
|
cert_path,
|
|
"/p",
|
|
cert_password,
|
|
"/t",
|
|
time_server,
|
|
"/fd",
|
|
hashing_algorithm,
|
|
path,
|
|
],
|
|
shell=True,
|
|
)
|
|
|
|
|
|
class WindowsChoco:
|
|
"""Chocolatey for Windows."""
|
|
|
|
def install(self, command, ci_env):
|
|
"""Installs packages using Chocolatey."""
|
|
if ci_env:
|
|
# don't show noisy choco progress bars in ci env
|
|
cmd_utils.run(
|
|
f"{command} --no-progress",
|
|
shell=True,
|
|
print_cmd=True,
|
|
)
|
|
else:
|
|
cmd_utils.run(
|
|
"winget install chocolatey",
|
|
check=False,
|
|
shell=True,
|
|
print_cmd=True,
|
|
)
|
|
cmd_utils.run(
|
|
command,
|
|
shell=True,
|
|
print_cmd=True,
|
|
)
|
|
|
|
def config_ci_cache(self):
|
|
"""Configures Chocolatey cache for CI."""
|
|
|
|
runner_temp = os.environ.get(runner_temp_env_var)
|
|
if runner_temp:
|
|
# sets the choco cache dir, which should match the dir in the ci cache action.
|
|
key_arg = '--name="cacheLocation"'
|
|
value_arg = f'--value="{runner_temp}/choco"'
|
|
cmd_utils.run(
|
|
["choco", "config", "set", key_arg, value_arg],
|
|
shell=True,
|
|
print_cmd=True,
|
|
)
|
|
else:
|
|
print(f"Warning: CI environment variable {runner_temp_env_var} not set")
|
|
|
|
def remove_from_config(self, choco_config_file, remove_packages):
|
|
"""Removes a package from the Chocolatey configuration."""
|
|
|
|
tree = ET.parse(choco_config_file)
|
|
root = tree.getroot()
|
|
for remove in remove_packages:
|
|
for package in root.findall("package"):
|
|
if package.get("id") == remove:
|
|
root.remove(package)
|
|
print(f"Removed package from choco config: {remove}")
|
|
|
|
tree.write(choco_config_file)
|
|
|
|
|
|
class WindowsQt:
|
|
"""Qt for Windows."""
|
|
|
|
def __init__(self, mirror_url, version, base_dir):
|
|
self.mirror_url = mirror_url
|
|
self.version = version
|
|
|
|
# allows ci to override the qt base dir path
|
|
self.base_dir = os.environ.get(qt_base_dir_env_var)
|
|
if not self.base_dir:
|
|
print(f"QT_BASE_DIR not set, using: {base_dir}")
|
|
self.base_dir = base_dir
|
|
|
|
self.install_dir = f"{self.base_dir}\\{self.version}"
|
|
|
|
def get_install_dir(self):
|
|
if os.path.isdir(self.install_dir):
|
|
return self.install_dir
|
|
|
|
def install(self):
|
|
"""Installs Qt on Windows."""
|
|
|
|
cmd_utils.run(
|
|
["pip", "install", "aqtinstall"],
|
|
shell=True,
|
|
print_cmd=True,
|
|
)
|
|
|
|
args = ["python", "-m", "aqt", "install-qt"]
|
|
args.extend(["--outputdir", self.base_dir])
|
|
args.extend(["--base", self.mirror_url])
|
|
args.extend(["windows", "desktop", self.version, "win64_msvc2019_64"])
|
|
cmd_utils.run(
|
|
args,
|
|
shell=True,
|
|
print_cmd=True,
|
|
)
|
|
|
|
install_dir = self.get_install_dir()
|
|
if not install_dir:
|
|
raise RuntimeError(f"Qt not installed, path not found: {install_dir}")
|
|
|
|
def set_env_vars(self):
|
|
set_env_var(cmake_env_var, f"{self.get_install_dir()}\\msvc2019_64")
|