almet/dangerzone
1
0
Fork 0
mirror of https://github.com/freedomofpress/dangerzone.git synced 2025-04-28 18:02:38 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 11

WIP: Automate release tasks

Browse source
This commit is contained in:
Alex Pyrgiotis 2024-11-19 17:15:43 +02:00
parent 1d2a91e8c5
commit 2d6af9c1ee
No known key found for this signature in database
GPG key ID: B6C15EBA0357C9AA
4 changed files with 340 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

293
dodo.py Normal file
View file

@ -0,0 +1,293 @@
import os
import platform
import shutil
from pathlib import Path
from doit import task_params
from doit.action import CmdAction
if platform.system() in ["Darwin", "Windows"]:
CONTAINER_RUNTIME = "docker"
elif platform.system() == "Linux":
CONTAINER_RUNTIME = "podman"
VERSION = open("share/version.txt").read().strip()
RELEASE_DIR = Path.home() / "release" / VERSION
FEDORA_VERSIONS = ["39", "40", "41"]
DEBIAN_VERSIONS = ["bullseye", "focal", "jammy", "mantic", "noble", "trixie"]
def list_files(path):
filepaths = []
for root, _, files in os.walk(path):
for f in files:
if f.endswith(".pyc"):
continue
filepaths.append(Path(root) / f)
return filepaths
def copy_dz_dir(src, dst):
shutil.rmtree(dst)
dst.mkdir(exist_ok=True)
shutil.copytree(src, dst)
def cmd_build_linux_pkg(distro, version, cwd, qubes=False):
pkg = "rpm" if distro == "fedora" else "deb"
cmd = [
"python3",
"./dev_scripts/env.py",
"--distro",
distro,
"--version",
version,
"run",
"--dev"
f"./dangerzone/install/linux/build-{pkg}.py"
]
if qubes:
cmd += ["--qubes"]
return CmdAction(cmd, cwd=cwd)
def task_check_python():
def check_python():
# FIXME: Check that Python 3.12 is installed.
return True
return {
"actions": [check_python],
}
def task_container_runtime():
return {
"actions": [
["which", CONTAINER_RUNTIME],
[CONTAINER_RUNTIME, "ps"],
],
}
def task_system_checks():
return {
"actions": None,
"task_dep": [
"check_python",
"container_runtime",
],
}
def task_download_tessdata():
return {
"actions": [["python", "install/common/download-tessdata.py"]],
"file_dep": [
"install/common/download-tessdata.py",
"share/ocr-languages.json",
],
"targets": ["share/tessdata"]
}
def task_build_container():
return {
"actions": ["python install/common/build-image.py --use-cache=%(use_cache)s"],
"params": [
{
"name": "use_cache",
"long": "use-cache",
"default": False,
}
],
"file_dep": [
"Dockerfile",
"poetry.lock",
*list_files("dangerzone/conversion"),
"dangerzone/gvisor_wrapper/entrypoint.py",
],
"targets": ["share/container.tar.gz", "share/image-id.txt"],
"task_dep": ["container_runtime"],
}
def task_poetry_install():
return {
"actions": ["poetry install --sync"],
}
def task_app():
return {
"actions": [["poetry", "run", "install/macos/build-app.py"]],
"file_dep": [
*list_files("share"),
*list_files("dangerzone"),
],
"task_dep": ["poetry_install"],
"targets": ["dist/Dangerzone.app"]
}
def task_codesign():
return {
"actions": [
["poetry", "run", "install/macos/build-app.py"],
[
"xcrun",
"notarytool",
"submit",
"--wait",
"--apple-id",
"<email>",
"--keychain-profile",
"dz-notarytool-release-key",
"dist/Dangerzone.dmg",
],
],
"file_dep": ["dist/Dangerzone.app"],
"targets": ["dist/Dangerzone.dmg"]
}
def task_init_release_dir():
def create_release_dir():
RELEASE_DIR.mkdir(parents=True, exist_ok=True)
(RELEASE_DIR / "github").mkdir(exist_ok=True)
(RELEASE_DIR / "tmp").mkdir(exist_ok=True)
return {
"actions": [create_release_dir],
"targets": [RELEASE_DIR, RELEASE_DIR / "github", RELEASE_DIR / "tmp"],
}
def task_debian_env():
return {
"actions": [
[
"python3",
"./dev_scripts/env.py",
"--distro",
"debian",
"--version",
"bookworm",
"build-dev",
]
],
}
def task_debian_deb():
dz_dir = RELEASE_DIR / "tmp" / "debian"
deb_name = f"dangerzone_{VERSION}-1_amd64.deb"
deb_src = dz_dir / "deb_dist" / deb_name
deb_dst = RELEASE_DIR / deb_name
return {
"actions": [
(copy_dz_dir, [".", dz_dir]),
cmd_build_linux_pkg("debian", "bookworm", cwd=dz_dir),
["cp", deb_src, deb_dst],
["rm", "-r", dz_dir],
],
"file_dep": [
RELEASE_DIR,
"share/container.tar.gz",
"share/image-id.txt",
],
"task_dep": [
"debian_env",
],
"targets": [deb_dst]
}
def task_fedora_env():
for version in FEDORA_VERSIONS:
yield {
"name": version,
"actions": [
[
"python3",
"./dev_scripts/env.py",
"--distro",
"fedora",
"--version",
version,
"build-dev",
],
],
}
def task_fedora_rpm():
for version in FEDORA_VERSIONS:
dz_dir = RELEASE_DIR / "tmp" / f"f{version}"
rpm_names = [
f"dangerzone-{VERSION}-1.fc{version}.x86_64.rpm",
f"dangerzone-{VERSION}-1.fc{version}.src.rpm",
f"dangerzone-qubes-{VERSION}-1.fc{version}.x86_64.rpm",
f"dangerzone-qubes-{VERSION}-1.fc{version}.src.rpm",
]
rpm_src = [dz_dir / "dist" / rpm_name for rpm_name in rpm_names]
rpm_dst = [RELEASE_DIR / rpm_name for rpm_name in rpm_names]
yield {
"name": version,
"actions": [
(copy_dz_dir, [".", dz_dir]),
cmd_build_linux_pkg("fedora", version, cwd=dz_dir),
cmd_build_linux_pkg("fedora", version, cwd=dz_dir, qubes=True),
["cp", *rpm_src, RELEASE_DIR],
["rm", "-r", dz_dir],
],
"file_dep": [
RELEASE_DIR,
"share/container.tar.gz",
"share/image-id.txt",
],
"task_dep": [
f"fedora_env:{version}",
],
"targets": rpm_dst
}
@task_params([{
"name": "apt_tools_prod_dir",
"default": "~/release/apt-tools-prod"
}])
def task_apt_tools_prod_prep(apt_tools_prod_dir):
apt_dir = Path(apt_tools_prod_dir).expanduser()
dz_dir = apt_dir / "dangerzone"
src = task_debian_deb()["targets"][0]
deb_name = src.name
bookworm_deb = dz_dir / "bookworm" / deb_name
other_debs = [dz_dir / version / deb_name for version in DEBIAN_VERSIONS]
def copy_files():
# Delete previous Dangerzone files.
old_files = dz_dir.rglob("dangerzone_*j")
for f in old_files:
f.unlink()
# Delete DB entries.
shutil.rmtree(apt_dir / "db")
shutil.rmtree(apt_dir / "public" / "dists")
shutil.rmtree(apt_dir / "public" / "pool")
# Copy .deb to bookworm folder.
shutil.copy2(src, bookworm_deb)
# Create the necessary symlinks
for deb in other_debs:
deb.symlink_to(f"../bookworm/{deb_name}")
return {
"actions": [copy_files],
"file_dep": [src],
"targets": [bookworm_deb, *other_debs]
}

15
install/common/build-image.py
View file

@ -16,6 +16,16 @@ elif platform.system() == "Linux":
ARCH = platform.machine() ARCH = platform.machine()
def str2bool(v):
if isinstance(v, bool):
return v
if v.lower() in ('yes', 'true', 't', 'y', '1'):
return True
elif v.lower() in ('no', 'false', 'f', 'n', '0'):
return False
else:
raise argparse.ArgumentTypeError('Boolean value expected.')
def main(): def main():
parser = argparse.ArgumentParser() parser = argparse.ArgumentParser()
@ -39,7 +49,10 @@ def main():
) )
parser.add_argument( parser.add_argument(
"--use-cache", "--use-cache",
action="store_true", type=str2bool,
nargs='?',
default=False,
const=True,
help="Use the builder's cache to speed up the builds (not suitable for release builds)", help="Use the builder's cache to speed up the builds (not suitable for release builds)",
) )
args = parser.parse_args() args = parser.parse_args()

30
poetry.lock generated
View file

@ -229,6 +229,17 @@ files = [
[package.dependencies] [package.dependencies]
colorama = {version = "*", markers = "platform_system == \"Windows\""} colorama = {version = "*", markers = "platform_system == \"Windows\""}
[[package]]
name = "cloudpickle"
version = "3.1.0"
description = "Pickler class to extend the standard pickle.Pickler functionality"
optional = false
python-versions = ">=3.8"
files = [
{file = "cloudpickle-3.1.0-py3-none-any.whl", hash = "sha256:fe11acda67f61aaaec473e3afe030feb131d78a43461b718185363384f1ba12e"},
{file = "cloudpickle-3.1.0.tar.gz", hash = "sha256:81a929b6e3c7335c863c771d673d105f02efdb89dfaba0c90495d1c64796601b"},
]
[[package]] [[package]]
name = "colorama" name = "colorama"
version = "0.4.6" version = "0.4.6"
@ -412,6 +423,24 @@ files = [
{file = "cx_logging-3.2.1.tar.gz", hash = "sha256:812665ae5012680a6fe47095c3772bce638e47cf05b2c3483db3bdbe6b06da44"}, {file = "cx_logging-3.2.1.tar.gz", hash = "sha256:812665ae5012680a6fe47095c3772bce638e47cf05b2c3483db3bdbe6b06da44"},
] ]
[[package]]
name = "doit"
version = "0.36.0"
description = "doit - Automation Tool"
optional = false
python-versions = ">=3.8"
files = [
{file = "doit-0.36.0-py3-none-any.whl", hash = "sha256:ebc285f6666871b5300091c26eafdff3de968a6bd60ea35dd1e3fc6f2e32479a"},
{file = "doit-0.36.0.tar.gz", hash = "sha256:71d07ccc9514cb22fe59d98999577665eaab57e16f644d04336ae0b4bae234bc"},
]
[package.dependencies]
cloudpickle = "*"
importlib-metadata = ">=4.4"
[package.extras]
toml = ["tomli"]
[[package]] [[package]]
name = "exceptiongroup" name = "exceptiongroup"
version = "1.2.2" version = "1.2.2"
@ -1189,4 +1218,3 @@ type = ["pytest-mypy"]
[metadata] [metadata]
lock-version = "2.0" lock-version = "2.0"
python-versions = ">=3.9,<3.13" python-versions = ">=3.9,<3.13"
content-hash = "5d1ff28aa04c3a814280e55c0b2a307efe5ca953cd4cb281056c35fd2e53fdf0"

4
pyproject.toml
View file

@ -23,6 +23,7 @@ pyxdg = {version = "*", platform = "linux"}
requests = "*" requests = "*"
markdown = "*" markdown = "*"
packaging = "*" packaging = "*"
doit = "^0.36.0"
[tool.poetry.scripts] [tool.poetry.scripts]
dangerzone = 'dangerzone:main' dangerzone = 'dangerzone:main'
@ -66,6 +67,9 @@ skip_gitignore = true
# This is necessary due to https://github.com/PyCQA/isort/issues/1835 # This is necessary due to https://github.com/PyCQA/isort/issues/1835
follow_links = false follow_links = false
[tool.doit.tasks.build_container]
use_cache = true
[build-system] [build-system]
requires = ["poetry-core>=1.2.0"] requires = ["poetry-core>=1.2.0"]
build-backend = "poetry.core.masonry.api" build-backend = "poetry.core.masonry.api"