Home Verkennen Help
Registreren Inloggen
coolbeer
/
cryptomator
spiegel van https://github.com/cryptomator/cryptomator.git
1
0
Vork 0
Bestanden Issues 0 Wiki
Boom: 8ce304a0c3
Aftakkingen Labels
cryptomator
/
.github
/
workflows
/
debian.yml

debian.yml 6.8 KB
Geschiedenis Ruwe

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152 
  1. name: Build Debian Package
    2. 

  2. 

  3. on:
    4. 

  4.   workflow_dispatch:
    5. 

  5.     inputs:
    6. 

  6.       semver:
    7. 

  7.         description: 'SemVer String (e.g. 1.7.0-beta1)'
    8. 

  8.         required: true
    9. 

  9.       ppaver:
    10. 

  10.         description: 'Base PPA Version String (e.g. 1.6.16+1.7.0~beta1) without -0ppa1'
    11. 

  11.         required: true
    12. 

  12.       dput:
    13. 

  13.         description: 'Upload to PPA'
    14. 

  14.         required: true
    15. 

  15.         default: false
    16. 

  16.         type: boolean
    17. 

  17. 

  18. env:
    19. 

  19.   JAVA_DIST: 'zulu'
    20. 

  20.   JAVA_VERSION: '21.0.1+12'
    21. 

  21.   COFFEELIBS_JDK_VERSION: 21
    22. 

  22.   OPENJFX_JMODS_AMD64: 'https://download2.gluonhq.com/openjfx/20.0.2/openjfx-20.0.2_linux-x64_bin-jmods.zip'
    23. 

  23.   OPENJFX_JMODS_AMD64_HASH: 'f522ac2ae4bdd61f0219b7b8d2058ff72a22f36a44378453bcfdcd82f8f5e08c'
    24. 

  24.   OPENJFX_JMODS_AARCH64: 'https://download2.gluonhq.com/openjfx/20.0.2/openjfx-20.0.2_linux-aarch64_bin-jmods.zip'
    25. 

  25.   OPENJFX_JMODS_AARCH64_HASH: 'c0d80ebbe0aab404ef9ad8b46c05bf533a1e40b39b2720eebd9238d81f6326ca'
    26. 

  26. 

  27. jobs:
    28. 

  28.   build:
    29. 

  29.     name: Build Debian Package
    30. 

  30.     runs-on: ubuntu-20.04
    31. 

  31.     steps:
    32. 

  32.       - uses: actions/checkout@v4
    33. 

  33.       - id: versions
    34. 

  34.         name: Get version information
    35. 

  35.         run: |
    36. 

  36.           SEM_VER_STR="${{ inputs.semver }}"
    37. 

  37.           SEM_VER_NUM=`echo ${SEM_VER_STR} | sed -E 's/([0-9]+\.[0-9]+\.[0-9]+).*/\1/'`
    38. 

  38.           REVCOUNT=`git rev-list --count HEAD`
    39. 

  39.           echo "semVerStr=${SEM_VER_STR}" >> $GITHUB_OUTPUT
    40. 

  40.           echo "semVerNum=${SEM_VER_NUM}" >> $GITHUB_OUTPUT
    41. 

  41.           echo "revNum=${REVCOUNT}" >> $GITHUB_OUTPUT
    42. 

  42.       - name: Install build tools
    43. 

  43.         run: |
    44. 

  44.           sudo add-apt-repository ppa:coffeelibs/openjdk
    45. 

  45.           sudo apt-get update
    46. 

  46.           sudo apt-get install debhelper devscripts dput coffeelibs-jdk-${{ env.COFFEELIBS_JDK_VERSION }} libgtk2.0-0
    47. 

  47.       - name: Setup Java
    48. 

  48.         uses: actions/setup-java@v3
    49. 

  49.         with:
    50. 

  50.           distribution: ${{ env.JAVA_DIST }}
    51. 

  51.           java-version: ${{ env.JAVA_VERSION }}
    52. 

  52.           check-latest: true
    53. 

  53.           cache: 'maven'
    54. 

  54.       - name: Run maven
    55. 

  55.         run: mvn -B clean package -Pdependency-check,linux -DskipTests
    56. 

  56.       - name: Download OpenJFX jmods
    57. 

  57.         id: download-jmods
    58. 

  58.         run: |
    59. 

  59.           curl -L ${{ env.OPENJFX_JMODS_AMD64 }} -o openjfx-amd64.zip
    60. 

  60.           echo "${{ env.OPENJFX_JMODS_AMD64_HASH }}  openjfx-amd64.zip" | shasum -a256 --check
    61. 

  61.           mkdir -p jmods/amd64
    62. 

  62.           unzip -j openjfx-amd64.zip \*/javafx.base.jmod \*/javafx.controls.jmod \*/javafx.fxml.jmod \*/javafx.graphics.jmod -d jmods/amd64
    63. 

  63.           curl -L ${{ env.OPENJFX_JMODS_AARCH64 }} -o openjfx-aarch64.zip
    64. 

  64.           echo "${{ env.OPENJFX_JMODS_AARCH64_HASH }}  openjfx-aarch64.zip" | shasum -a256 --check
    65. 

  65.           mkdir -p jmods/aarch64
    66. 

  66.           unzip -j openjfx-aarch64.zip \*/javafx.base.jmod \*/javafx.controls.jmod \*/javafx.fxml.jmod \*/javafx.graphics.jmod -d jmods/aarch64
    67. 

  67.       - name: Ensure major jfx version in pom and in jmods is the same
    68. 

  68.         run: |
    69. 

  69.           JMOD_VERSION_AMD64=$(jmod describe jmods/amd64/javafx.base.jmod | head -1)
    70. 

  70.           JMOD_VERSION_AMD64=${JMOD_VERSION_AMD64#*@}
    71. 

  71.           JMOD_VERSION_AMD64=${JMOD_VERSION_AMD64%%.*}
    72. 

  72.           JMOD_VERSION_AARCH64=$(jmod describe jmods/aarch64/javafx.base.jmod | head -1)
    73. 

  73.           JMOD_VERSION_AARCH64=${JMOD_VERSION_AARCH64#*@}
    74. 

  74.           JMOD_VERSION_AARCH64=${JMOD_VERSION_AARCH64%%.*}
    75. 

  75.           POM_JFX_VERSION=$(mvn help:evaluate "-Dexpression=javafx.version" -q -DforceStdout)
    76. 

  76.           POM_JFX_VERSION=${POM_JFX_VERSION#*@}
    77. 

  77.           POM_JFX_VERSION=${POM_JFX_VERSION%%.*}
    78. 

  78. 

  79.           if [ $POM_JFX_VERSION -ne $JMOD_VERSION_AMD64 ]; then
    80. 

  80.             >&2 echo "Major JavaFX version in pom.xml (${POM_JFX_VERSION}) != amd64 jmod version (${JMOD_VERSION_AMD64})"
    81. 

  81.             exit 1
    82. 

  82.           fi
    83. 

  83. 

  84.           if [ $POM_JFX_VERSION -ne $JMOD_VERSION_AARCH64 ]; then
    85. 

  85.             >&2 echo "Major JavaFX version in pom.xml (${POM_JFX_VERSION}) != aarch64 jmod version (${JMOD_VERSION_AARCH64})"
    86. 

  86.             exit 1
    87. 

  87.           fi
    88. 

  88.       - name: Create orig.tar.gz with common/ libs/ mods/ jmods/
    89. 

  89.         run: |
    90. 

  90.           mkdir pkgdir
    91. 

  91.           cp -r target/libs pkgdir
    92. 

  92.           cp -r target/mods pkgdir
    93. 

  93.           cp -r jmods pkgdir
    94. 

  94.           cp -r dist/linux/common/ pkgdir
    95. 

  95.           cp target/cryptomator-*.jar pkgdir/mods
    96. 

  96.           tar -cJf cryptomator_${{ inputs.ppaver }}.orig.tar.xz -C pkgdir .
    97. 

  97.       - name: Patch and rename pkgdir
    98. 

  98.         run: |
    99. 

  99.           cp -r dist/linux/debian/ pkgdir
    100. 

  100.           export RFC2822_TIMESTAMP=`date --rfc-2822`
    101. 

  101.           export DISABLE_UPDATE_CHECK=${{ inputs.dput }}
    102. 

  102.           envsubst '${SEMVER_STR} ${VERSION_NUM} ${REVISION_NUM} ${DISABLE_UPDATE_CHECK}' < dist/linux/debian/rules > pkgdir/debian/rules
    103. 

  103.           envsubst '${PPA_VERSION} ${RFC2822_TIMESTAMP}' < dist/linux/debian/changelog > pkgdir/debian/changelog
    104. 

  104.           find . -name "*.jar" >> pkgdir/debian/source/include-binaries
    105. 

  105.           mv pkgdir cryptomator_${{ inputs.ppaver }}
    106. 

  106.         env:
    107. 

  107.           SEMVER_STR: ${{ steps.versions.outputs.semVerStr }}
    108. 

  108.           VERSION_NUM: ${{ steps.versions.outputs.semVerNum }}
    109. 

  109.           REVISION_NUM: ${{ steps.versions.outputs.revNum }}
    110. 

  110.           PPA_VERSION: ${{ inputs.ppaver }}-0ppa1
    111. 

  111.       - name: Prepare GPG-Agent for signing with key 615D449FE6E6A235
    112. 

  112.         run: |
    113. 

  113.           echo "${GPG_PRIVATE_KEY}" | gpg --batch --quiet --import
    114. 

  114.           echo "${GPG_PASSPHRASE}" | gpg --batch --quiet --passphrase-fd 0 --pinentry-mode loopback -u 615D449FE6E6A235 --dry-run --sign README.md
    115. 

  115.         env:
    116. 

  116.           GPG_PRIVATE_KEY: ${{ secrets.RELEASES_GPG_PRIVATE_KEY }}
    117. 

  117.           GPG_PASSPHRASE: ${{ secrets.RELEASES_GPG_PASSPHRASE }}
    118. 

  118.       - name: debuild
    119. 

  119.         run: |
    120. 

  120.           debuild -S -sa -d
    121. 

  121.           debuild -b -sa -d
    122. 

  122.         env:
    123. 

  123.           DEBSIGN_PROGRAM: gpg --batch --pinentry-mode loopback
    124. 

  124.           DEBSIGN_KEYID: 615D449FE6E6A235
    125. 

  125.         working-directory: cryptomator_${{ inputs.ppaver }}
    126. 

  126.       - name: Create detached GPG signatures
    127. 

  127.         run: |
    128. 

  128.           gpg --batch --quiet --passphrase-fd 0 --pinentry-mode loopback -u 615D449FE6E6A235 --detach-sign -a cryptomator_*_amd64.deb
    129. 

  129.       - name: Upload artifacts
    130. 

  130.         uses: actions/upload-artifact@v3
    131. 

  131.         with:
    132. 

  132.           name: linux-deb-package
    133. 

  133.           path: |
    134. 

  134.             cryptomator_*.dsc
    135. 

  135.             cryptomator_*.orig.tar.xz
    136. 

  136.             cryptomator_*.debian.tar.xz
    137. 

  137.             cryptomator_*_source.buildinfo
    138. 

  138.             cryptomator_*_source.changes
    139. 

  139.             cryptomator_*_amd64.deb
    140. 

  140.             cryptomator_*.asc
    141. 

  141.       - name: Publish on PPA
    142. 

  142.         if: inputs.dput
    143. 

  143.         run: dput ppa:sebastian-stenzel/cryptomator-beta cryptomator_*_source.changes
    144. 

  144.       
    145. 

  145.       # If ref is a tag, also upload to GitHub Releases:
    146. 

  146.       - name: Publish Debian package on GitHub Releases
    147. 

  147.         if: startsWith(github.ref, 'refs/tags/')
    148. 

  148.         env:
    149. 

  149.           GITHUB_TOKEN: ${{ secrets.CRYPTOBOT_RELEASE_TOKEN }}
    150. 

  150.         run: |
    151. 

  151.           artifacts=$(ls | grep cryptomator*.deb)
    152. 

  152.           gh release upload ${{ github.ref_name }} $artifacts
    153.