1492 commits

This branch

This branch

All branches

Author	SHA1	Message	Date
Alexis Métaireau	4a4b580555	Add classifiers in pyproject.toml	2025-01-13 17:50:04 +01:00
Alexis Métaireau	e0a0eddc71	Pyproject is for darwin	2025-01-13 17:34:47 +01:00
Alexis Métaireau	c9578cc539	Pass the package group to macOS installer	2025-01-13 17:25:17 +01:00
Alexis Métaireau	fb372bf2a8	Add dynamic README for windows packaging	2025-01-13 17:12:32 +01:00
Alexis Métaireau	b341081503	FIXUP: Don't need to use uv when building the deb scripts	2025-01-13 16:23:33 +01:00
Alexis Métaireau	2e1fa9b7a0	Remove PymuPDF version pin	2025-01-13 15:03:04 +01:00
Alexis Métaireau	ca5cacaf2e	Add env.py to hashed/cached files	2025-01-13 14:50:09 +01:00
Alexis Métaireau	23f10778ef	Install missing hatchling dep for fedora	2025-01-07 11:57:39 +01:00
Alexis Métaireau	bc603306a1	Add xdg to the linux dependencies	2025-01-07 11:29:49 +01:00
Alexis Métaireau	6b3dee58a3	Make uv sync use a specific venv when building ... If not specifying it, it tries to write a `.venv` in the current dir which isn't writeable, and fails.	2025-01-07 11:19:07 +01:00
Alexis Métaireau	fca1e863f9	Add the test group when running the tests in the CI	2025-01-06 18:23:22 +01:00
Alexis Métaireau	437c6b0ab7	Update the cli args for pip when vendorizing pymupdf	2025-01-06 18:05:27 +01:00
Alexis Métaireau	eb54a2f3ff	update uv lock	2025-01-06 17:44:55 +01:00
Alexis Métaireau	eea5c454ab	Define README and classifiers as dynamic	2025-01-06 17:44:35 +01:00
Alexis Métaireau	cd31dd48e7	Add groups to windows and mac runners	2025-01-06 17:34:28 +01:00
Alexis Métaireau	cf4173abcf	Add build dependencies when building deb files	2025-01-06 17:29:51 +01:00
Alexis Métaireau	572d9e3f61	Do not run uv sync directly in the Dockerfile	2025-01-06 17:13:56 +01:00
Alexis Métaireau	9169246924	Add test dependencies before trying to run the CI	2025-01-06 16:02:13 +01:00
Alexis Métaireau	77fe6fb4aa	Apply ruff fixes	2025-01-06 15:51:54 +01:00
Alexis Métaireau	20f1e43471	Fix uv replacement in qa.py script	2025-01-06 15:51:29 +01:00
Alexis Métaireau	e1357ca2fe	Update the makefile	2025-01-06 15:38:05 +01:00
Alexis Métaireau	66fe6adf76	Remove wrongfully commited GHA	2025-01-06 15:26:27 +01:00
Alexis Métaireau	824bfdd317	Install uv in the CI	2025-01-06 15:24:56 +01:00
Alexis Métaireau	f3bc880b7e	Update the github actions to support uv instead of poetry	2025-01-06 15:17:24 +01:00
Alexis Métaireau	ce25d51634	Replace poetry by uv in the docs	2025-01-06 15:04:33 +01:00
Alexis Métaireau	4d046989ef	WIP	2024-12-23 18:09:38 +01:00
Alexis Métaireau	9d23077a37	build: Update pyproject.toml to follow standards ... This now follows [PEP 517](https://peps.python.org/pep-0517/) and [PEP 621](https://peps.python.org/pep-0621/) to define the metadata of the project, as well as its dependencies. As a result, the toolchain now uses [uv](https://github.com/astral-sh/uv) instead of [poetry](https://python-poetry.org/). The build-backend has been switched to [Hatch](https://hatch.pypa.io/latest/). Fixes #677	2024-12-19 19:50:05 +01:00
Alex Pyrgiotis	aad17a9150	WIP: Remove non-reproducible parts	2024-12-12 23:13:41 +02:00
Alex Pyrgiotis	60905ce222	WIP: Image works!	2024-12-12 22:48:25 +02:00
Alex Pyrgiotis	7c342ce899	WIP: Reproducibility	2024-12-12 22:48:25 +02:00
Alex Pyrgiotis	fbe05065c9	docs: Update release instructions ... Update our release instructions with a way to run manual tasks via `doit`. Also, add developer documentation on how to use `doit`, and some tips and tricks.	2024-12-10 15:28:16 +02:00
Alex Pyrgiotis	54ffc63c4f	Add build-* targets in Makefile based on doit ... Add Make targets that build release artifacts with doit.	2024-12-10 15:28:16 +02:00
Alex Pyrgiotis	bdc4cf13c4	Add doit configuration options	2024-12-10 15:28:16 +02:00
Alex Pyrgiotis	92d7bd6bee	Automate a large portion of our release tasks ... Create a `dodo.py` file where we define the dependencies and targets of each release task, as well as how to run it. Currently, we have automated all of our Linux and macOS tasks, except for adding Linux packages to the respective APT/YUM repos. The tasks we have automated follow below: build_image Build the container image using ./install/common/build-image.py check_container_runtime Test that the container runtime is ready. clean_container_runtime Clean the storage space of the container runtime. clean_prompt Make sure that the user really wants to run the clean tasks. debian_deb Build a Debian package for Debian Bookworm. debian_env Build a Debian Bookworm dev environment. download_tessdata Download the Tesseract data using ./install/common/download-tessdata.py fedora_env Build Fedora dev environments. fedora_env:40 Build Fedora 40 dev environments fedora_env:41 Build Fedora 41 dev environments fedora_rpm Build Fedora packages for every supported version. fedora_rpm:40 Build a Fedora 40 package fedora_rpm:40-qubes Build a Fedora 40 package for Qubes fedora_rpm:41 Build a Fedora 41 package fedora_rpm:41-qubes Build a Fedora 41 package for Qubes git_archive Build a Git archive of the repo. init_release_dir Create a directory for release artifacts. macos_build_dmg Build the macOS .dmg file for Dangerzone. macos_check_cert Test that the Apple developer certificate can be used. macos_check_system Run macOS specific system checks, as well as the generic ones. poetry_install Setup the Poetry environment Closes #1016	2024-12-10 15:27:20 +02:00
Alex Pyrgiotis	7c5a191a5c	Add doit in Poetry as package dependency ... Add the doit automation tool in our `pyproject.toml` and `poetry.lock` file as a package-related dependency, since we don't want to ship it to our end users.	2024-12-10 11:34:25 +02:00
Alex Pyrgiotis	4bd794dbd1	Allow passing true/false to --use-cache build arg	2024-12-10 11:34:25 +02:00
Alex Pyrgiotis	3eac00b873	ci: Work with image tarballs that are not tagged as 'latest' ... Now that our image tarball is not tagged as 'latest', we must first grab the image tag first, and then refer to it. We can grab the tag either from `share/image-id.txt` (if available) or with: docker load dangerzone.rocks/dangerzone --format {{ .Tag }}	2024-12-10 11:31:39 +02:00
Alex Pyrgiotis	ec9f8835e0	Move container security arg to proper place ... Now that #748 has been merged, we can move the `--userns nomap` argument to the list with the rest of our security arguments.	2024-12-10 11:31:39 +02:00
Alex Pyrgiotis	0383081394	Factor out container utilities to separate module	2024-12-10 11:31:39 +02:00
Alex Pyrgiotis	25fba42022	Extend the interface of the isolation provider ... Add the following two methods in the isolation provider: 1. `.is_available()`: Mainly used for the Container isolation provider, it specifies whether the container runtime is up and running. May be used in the future by other similar providers. 2. `.should_wait_install()`: Whether the isolation provider takes a while to be installed. Should be `True` only for the Container isolation provider, for the time being.	2024-12-10 11:29:00 +02:00
Alex Pyrgiotis	e54567b7d4	Fix minor typos in our docs	2024-12-10 11:29:00 +02:00
Alex Pyrgiotis	2a8355fb88	Update our release instructions	2024-12-10 11:29:00 +02:00
Alex Pyrgiotis	e22c795cb7	container: Revamp container image installation ... Revamp the container image installation process in a way that does not involve using image IDs. We don't want to rely on image IDs anymore, since they are brittle (see https://github.com/freedomofpress/dangerzone/issues/933). Instead, we use image tags, as provided in the `image-id.txt` file. This allows us to check fast if an image is up to date, and we no longer need to maintain multiple image IDs from various container runtimes. Refs #933 Refs #988 Fixes #1020	2024-12-10 11:29:00 +02:00
Alex Pyrgiotis	909560353d	Build and tag Dangerzone images ... Build Dangerzone images and tag them with a unique ID that stems from the Git reop. Note that using tags as image IDs instead of regular image IDs breaks the current Dangerzone expectations, but this will be addressed in subsequent commits.	2024-12-10 11:18:23 +02:00
Alex Pyrgiotis	6a5e76f2b4	Build and tag Dangerzone images ... Build Dangerzone images and tag them with a unique ID that stems from the Git reop. Note that using tags as image IDs instead of regular image IDs breaks the current Dangerzone expectations, but this will be addressed in subsequent commits.	2024-12-10 11:18:23 +02:00
Alex Pyrgiotis	20152fac13	container: Factor out loading an image tarball	2024-12-10 11:18:23 +02:00
Alex Pyrgiotis	6b51d56e9f	container: Manipulate Dangerzone image tags ... Add the following methods that allow the `Container` isolation provider to work with tags for the Dangerzone image: * `list_image_tag()` * `delete_image_tag()` * `add_image_tag()`	2024-12-10 11:18:23 +02:00
Alex Pyrgiotis	309bd12423	Move container-specific method from base class ... Move the `is_runtime_available()` method from the base `IsolationProvider` class, and into the `Dummy` provider class. This method was originally defined in the base class, in order to be mocked in our tests for the `Dummy` provider. There's no reason for the `Qubes` class to have it though, so we can just move it to the `Dummy` provider.	2024-12-09 19:19:21 +02:00
Alex Pyrgiotis	1c0a99fcd2	Update changelog	2024-12-09 18:46:25 +02:00
jkarasti	4b5f4b27d7	Fix: Dangerzone installed using an msi built with WiX Toolset v3 is not uninstalled by an msi built with WiX Toolset v5 ... Workaround for an issue after upgrading from WiX Toolset v3 to v5 where the previous version of Dangerzone is not uninstalled during the upgrade by checking if the older installation exists in "C:\Program Files (x86)\Dangerzone". Also handle a special case for Dangerzone 0.8.0 which allows choosing the install location during install by checking if the registry key for it exists. Note that this seems to allow installing Dangerzone 0.8.0 after installing Dangerzone from this branch. In this case the installer errors until Dangerzone 0.8.0 is uninstalled again	2024-12-09 18:42:12 +02:00