Startseite Erkunden Hilfe
Registrieren Anmelden
coolbeer
/
cryptomator
Mirror von https://github.com/cryptomator/cryptomator.git
1
0
Fork 0
Dateien Issues 0 Wiki
Struktur: 6386dd3d50
Branches Tags
cryptomator
/
.github
/
workflows
/
debian.yml

debian.yml 7.2 KB
Verlauf Originalformat

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167 
  1. name: Build Debian Package
    2. 

  2. 

  3. on:
    4. 

  4.   workflow_dispatch:
    5. 

  5.     inputs:
    6. 

  6.       ref:
    7. 

  7.         description: 'GitHub Ref (e.g. refs/tags/1.6.16)'
    8. 

  8.         required: true
    9. 

  9.       semver:
    10. 

  10.         description: 'SemVer String (e.g. 1.7.0-beta1)'
    11. 

  11.         required: true
    12. 

  12.       ppaver:
    13. 

  13.         description: 'Base PPA Version String (e.g. 1.6.16+1.7.0~beta1) without -0ppa1'
    14. 

  14.         required: true
    15. 

  15.       dput:
    16. 

  16.         description: 'Upload to PPA'
    17. 

  17.         required: true
    18. 

  18.         default: false
    19. 

  19.         type: boolean
    20. 

  20. 

  21. env:
    22. 

  22.   JAVA_VERSION: 20
    23. 

  23.   OPENJFX_JMODS_AMD64: 'https://download2.gluonhq.com/openjfx/20.0.1/openjfx-20.0.1_linux-x64_bin-jmods.zip'
    24. 

  24.   JMODS_AMD64_HASH: '0b244b08354dc5e1b639765fd0858cbc154774e9cb05467c4111b7c63d3b3721'
    25. 

  25.   OPENJFX_JMODS_AARCH64: 'https://download2.gluonhq.com/openjfx/20.0.1/openjfx-20.0.1_linux-aarch64_bin-jmods.zip'
    26. 

  26.   JMODS_AARCH64_HASH: '4b0dd30282c067aa07fe840374115b5ec5dcfd8dc479ebd2231dfdb6a518b3b3'
    27. 

  27. 

  28. jobs:
    29. 

  29.   build:
    30. 

  30.     name: Build Debian Package
    31. 

  31.     runs-on: ubuntu-20.04
    32. 

  32.     steps:
    33. 

  33.       - uses: actions/checkout@v3
    34. 

  34.         with:
    35. 

  35.           ref: ${{ inputs.ref }}
    36. 

  36.           fetch-depth: 0
    37. 

  37.       - id: versions
    38. 

  38.         name: Get version information
    39. 

  39.         run: |
    40. 

  40.           SEM_VER_STR="${{ inputs.semver }}"
    41. 

  41.           SEM_VER_NUM=`echo ${SEM_VER_STR} | sed -E 's/([0-9]+\.[0-9]+\.[0-9]+).*/\1/'`
    42. 

  42.           REVCOUNT=`git rev-list --count HEAD`
    43. 

  43.           echo "semVerStr=${SEM_VER_STR}" >> $GITHUB_OUTPUT
    44. 

  44.           echo "semVerNum=${SEM_VER_NUM}" >> $GITHUB_OUTPUT
    45. 

  45.           echo "revNum=${REVCOUNT}" >> $GITHUB_OUTPUT
    46. 

  46.       - name: Install build tools
    47. 

  47.         run: |
    48. 

  48.           sudo add-apt-repository ppa:coffeelibs/openjdk
    49. 

  49.           sudo apt-get update
    50. 

  50.           sudo apt-get install debhelper devscripts dput coffeelibs-jdk-19 libgtk2.0-0
    51. 

  51.       - name: Setup Java
    52. 

  52.         uses: actions/setup-java@v3
    53. 

  53.         with:
    54. 

  54.           distribution: 'zulu'
    55. 

  55.           java-version: ${{ env.JAVA_VERSION }}
    56. 

  56.           cache: 'maven'
    57. 

  57.       - name: Run maven
    58. 

  58.         run: mvn -B clean package -Pdependency-check,linux -DskipTests
    59. 

  59.       - name: Download OpenJFX jmods
    60. 

  60.         id: download-jmods
    61. 

  61.         run: |
    62. 

  62.           curl -L ${{ env.OPENJFX_JMODS_AMD64 }} -o openjfx-amd64.zip
    63. 

  63.           echo "${{ env.JMODS_AMD64_HASH }} openjfx-amd64.zip" | sha256sum -c
    64. 

  64.           if [ $? != 0 ]; then
    65. 

  65.             echo "Wrong checksum of JMOD archive downloaded from ${{ env.OPENJFX_JMODS_AMD64 }}.";
    66. 

  66.             exit 1
    67. 

  67.           fi
    68. 

  68.           mkdir -p jmods/amd64
    69. 

  69.           unzip -j openjfx-amd64.zip \*/javafx.base.jmod \*/javafx.controls.jmod \*/javafx.fxml.jmod \*/javafx.graphics.jmod -d jmods/amd64
    70. 

  70.           curl -L ${{ env.OPENJFX_JMODS_AARCH64 }} -o openjfx-aarch64.zip
    71. 

  71.           echo "${{ env.JMODS_AARCH64_HASH }} openjfx-aarch64.zip" | sha256sum -c
    72. 

  72.           if [ $? != 0 ]; then
    73. 

  73.             echo "Wrong checksum of JMOD archive downloaded from ${{ env.OPENJFX_JMODS_AARCH64 }}.";
    74. 

  74.             exit 1
    75. 

  75.           fi
    76. 

  76.           mkdir -p jmods/aarch64
    77. 

  77.           unzip -j openjfx-aarch64.zip \*/javafx.base.jmod \*/javafx.controls.jmod \*/javafx.fxml.jmod \*/javafx.graphics.jmod -d jmods/aarch64
    78. 

  78.       - name: Ensure major jfx version in pom and in jmods is the same
    79. 

  79.         run: |
    80. 

  80.           JMOD_VERSION_AMD64=$(jmod describe jmods/amd64/javafx.base.jmod | head -1)
    81. 

  81.           JMOD_VERSION_AMD64=${JMOD_VERSION_AMD64#*@}
    82. 

  82.           JMOD_VERSION_AMD64=${JMOD_VERSION_AMD64%%.*}
    83. 

  83.           JMOD_VERSION_AARCH64=$(jmod describe jmods/aarch64/javafx.base.jmod | head -1)
    84. 

  84.           JMOD_VERSION_AARCH64=${JMOD_VERSION_AARCH64#*@}
    85. 

  85.           JMOD_VERSION_AARCH64=${JMOD_VERSION_AARCH64%%.*}
    86. 

  86.           POM_JFX_VERSION=$(mvn help:evaluate "-Dexpression=javafx.version" -q -DforceStdout)
    87. 

  87.           POM_JFX_VERSION=${POM_JFX_VERSION#*@}
    88. 

  88.           POM_JFX_VERSION=${POM_JFX_VERSION%%.*}
    89. 

  89. 

  90.           if [ $POM_JFX_VERSION -ne $JMOD_VERSION_AMD64 ]; then
    91. 

  91.             >&2 echo "Major JavaFX version in pom.xml (${POM_JFX_VERSION}) != amd64 jmod version (${JMOD_VERSION_AMD64})"
    92. 

  92.             exit 1
    93. 

  93.           fi
    94. 

  94. 

  95.           if [ $POM_JFX_VERSION -ne $JMOD_VERSION_AARCH64 ]; then
    96. 

  96.             >&2 echo "Major JavaFX version in pom.xml (${POM_JFX_VERSION}) != aarch64 jmod version (${JMOD_VERSION_AARCH64})"
    97. 

  97.             exit 1
    98. 

  98.           fi
    99. 

  99.       - name: Create orig.tar.gz with common/ libs/ mods/ jmods/
    100. 

  100.         run: |
    101. 

  101.           mkdir pkgdir
    102. 

  102.           cp -r target/libs pkgdir
    103. 

  103.           cp -r target/mods pkgdir
    104. 

  104.           cp -r jmods pkgdir
    105. 

  105.           cp -r dist/linux/common/ pkgdir
    106. 

  106.           cp target/cryptomator-*.jar pkgdir/mods
    107. 

  107.           tar -cJf cryptomator_${{ inputs.ppaver }}.orig.tar.xz -C pkgdir .
    108. 

  108.       - name: Patch and rename pkgdir
    109. 

  109.         run: |
    110. 

  110.           cp -r dist/linux/debian/ pkgdir
    111. 

  111.           export RFC2822_TIMESTAMP=`date --rfc-2822`
    112. 

  112.           envsubst '${SEMVER_STR} ${VERSION_NUM} ${REVISION_NUM}' < dist/linux/debian/rules > pkgdir/debian/rules
    113. 

  113.           envsubst '${PPA_VERSION} ${RFC2822_TIMESTAMP}' < dist/linux/debian/changelog > pkgdir/debian/changelog
    114. 

  114.           find . -name "*.jar" >> pkgdir/debian/source/include-binaries
    115. 

  115.           mv pkgdir cryptomator_${{ inputs.ppaver }}
    116. 

  116.         env:
    117. 

  117.           SEMVER_STR: ${{ steps.versions.outputs.semVerStr }}
    118. 

  118.           VERSION_NUM: ${{ steps.versions.outputs.semVerNum }}
    119. 

  119.           REVISION_NUM: ${{ steps.versions.outputs.revNum }}
    120. 

  120.           PPA_VERSION: ${{ inputs.ppaver }}-0ppa1
    121. 

  121.       - name: Prepare GPG-Agent for signing with key 615D449FE6E6A235
    122. 

  122.         run: |
    123. 

  123.           echo "${GPG_PRIVATE_KEY}" | gpg --batch --quiet --import
    124. 

  124.           echo "${GPG_PASSPHRASE}" | gpg --batch --quiet --passphrase-fd 0 --pinentry-mode loopback -u 615D449FE6E6A235 --dry-run --sign README.md
    125. 

  125.         env:
    126. 

  126.           GPG_PRIVATE_KEY: ${{ secrets.RELEASES_GPG_PRIVATE_KEY }}
    127. 

  127.           GPG_PASSPHRASE: ${{ secrets.RELEASES_GPG_PASSPHRASE }}
    128. 

  128.       - name: debuild
    129. 

  129.         run: |
    130. 

  130.           debuild -S -sa -d
    131. 

  131.           debuild -b -sa -d
    132. 

  132.         env:
    133. 

  133.           DEBSIGN_PROGRAM: gpg --batch --pinentry-mode loopback
    134. 

  134.           DEBSIGN_KEYID: 615D449FE6E6A235
    135. 

  135.         working-directory: cryptomator_${{ inputs.ppaver }}
    136. 

  136.       - name: Create detached GPG signatures
    137. 

  137.         run: |
    138. 

  138.           gpg --batch --quiet --passphrase-fd 0 --pinentry-mode loopback -u 615D449FE6E6A235 --detach-sign -a cryptomator_*_amd64.deb
    139. 

  139.       - name: Upload artifacts
    140. 

  140.         uses: actions/upload-artifact@v3
    141. 

  141.         with:
    142. 

  142.           name: linux-deb-package
    143. 

  143.           path: |
    144. 

  144.             cryptomator_*.dsc
    145. 

  145.             cryptomator_*.orig.tar.xz
    146. 

  146.             cryptomator_*.debian.tar.xz
    147. 

  147.             cryptomator_*_source.buildinfo
    148. 

  148.             cryptomator_*_source.changes
    149. 

  149.             cryptomator_*_amd64.deb
    150. 

  150.             cryptomator_*.asc
    151. 

  151.       - name: Publish on PPA
    152. 

  152.         if: inputs.dput
    153. 

  153.         run: dput ppa:sebastian-stenzel/cryptomator-beta cryptomator_*_source.changes
    154. 

  154.       
    155. 

  155.       # If ref is a tag, also upload to GitHub Releases:
    156. 

  156.       - name: Determine tag name
    157. 

  157.         if: startsWith(inputs.ref, 'refs/tags/')
    158. 

  158.         run: |
    159. 

  159.           REF=${{ inputs.ref }}
    160. 

  160.           echo "TAG_NAME=${REF##*/}" >> $GITHUB_ENV
    161. 

  161.       - name: Publish Debian package on GitHub Releases
    162. 

  162.         if: startsWith(inputs.ref, 'refs/tags/')
    163. 

  163.         env:
    164. 

  164.           GITHUB_TOKEN: ${{ secrets.CRYPTOBOT_RELEASE_TOKEN }}
    165. 

  165.         run: |
    166. 

  166.           artifacts=$(ls | grep cryptomator*.deb)
    167. 

  167.           gh release upload ${{ env.TAG_NAME }} $artifacts
    168.