remoting/host/installer/mac/do_signing.sh - Issue 10197005: [Chromoting] Sign, brand and version the me2me_host

Unified Diff: remoting/host/installer/mac/do_signing.sh

Issue 10197005: [Chromoting] Sign, brand and version the me2me_host (Closed) Base URL: svn://chrome-svn/chrome/trunk/src/

Patch Set: Created 8 years, 8 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: remoting/host/installer/mac/do_signing.sh

===================================================================

--- remoting/host/installer/mac/do_signing.sh (revision 0)

+++ remoting/host/installer/mac/do_signing.sh (working copy)

@@ -0,0 +1,163 @@

+#!/bin/sh

+# Use of this source code is governed by a BSD-style license that can be

+# found in the LICENSE file.

Mark Mentovai 2012/04/24 20:13:11 I like to run scripts under |set -e| to make them

garykac 2012/04/24 22:31:12 Done.

+# This script signs the Chromoting binaries, builds the Chrome Remote Desktop

+# installer and then packages it into a .dmg. It requires that Iceberg be

+# installed (for 'freeze').

+# usage: sign_and_build.sh output_dir input_dir codesign_keychain codesign_id

+# The final disk image (dmg) is placed in |output_dir|.

+# Binaries to sign.

+ME2ME_HOST=PrivilegedHelperTools/org.chromium.chromoting.me2me_host

+# Iceberg creates this directory to write its output.

+PKG_DIR=build

+# The Chromoting Host installer is a meta-package that consists of 3

+# components:

+# * Chromoting Host Service package

+# * Chromoting Host Uninstaller package

+# * Keystone package(GoogleSoftwareUpdate - for Official builds only)

+PKGPROJ_HOST='ChromotingHost.packproj'

+PKGPROJ_HOST_SERVICE='ChromotingHostService.packproj'

+PKGPROJ_HOST_UNINSTALLER='ChromotingHostUninstaller.packproj'

+# Final mpkg name (for Official builds).

+PKG_FINAL='ChromeRemoteDesktopHost.mpkg'

+DMG_TEMP=dmg_tmp

+DMG_NAME='Chrome Remote Desktop'

+DMG_DIR="${DMG_TEMP}/${DMG_NAME}"

+DMG_FILENAME='Chrome Remote Desktop.dmg'

+ME="$(basename "${0}")"

+readonly ME

+err() {

+ echo "[$(date +'%Y-%m-%d %H:%M:%S%z')]: ${@}" >&2

+err_exit() {

+ err "${@}"

+ exit 1

+# shell_safe_path ensures that |path| is safe to pass to tools as a

+# command-line argument. If the first character in |path| is "-", "./" is

+# prepended to it. The possibly-modified |path| is output.

+shell_safe_path() {

+ local path="${1}"

+ if [[ "${path:0:1}" = "-" ]]; then

+ echo "./${path}"

+ else

+ echo "${path}"

+ fi

+verify_empty_dir() {

+ local dir="${1}"

+ if [[ ! -d "${dir}" ]]; then

+ mkdir "${dir}"

+ fi

+ shopt -s nullglob dotglob

+ local dir_contents=("${dir}"/*)

+ shopt -u nullglob dotglob

+ if [[ ${#dir_contents[@]} -ne 0 ]]; then

+ err "output directory must be empty"

+ exit 1

+ fi

+sign_binaries() {

+ local input_dir="${1}"

+ local keychain="${2}"

+ local id="${3}"

+ me2me_host="${input_dir}/${ME2ME_HOST}"

+ if [[ ! -f "${me2me_host}" ]]; then

+ err_exit "Input file doesn't exist: ${me2me_host}"

+ fi

+ echo Signing "${me2me_host}"

+ codesign -vv -s "${id}" --keychain "${keychain}" "${me2me_host}"

+ if [[ ${?} != 0 ]]; then

Mark Mentovai 2012/04/24 20:13:11 If you were using |set -e|, you could get rid of t

garykac 2012/04/24 22:31:12 Done.

+ err_exit "Unable to sign: ${me2me_host}"

+ fi

+ # Verify signing.

+ codesign -v "${me2me_host}"

+ if [[ ${?} != 0 ]]; then

+ err_exit "Not properly signed: ${me2me_host}"

+ fi

+build_package() {

+ local pkg="${1}"

+ echo "Building .pkg from ${pkg}"

+ freeze "${pkg}"

+ if [[ ${?} != 0 ]]; then

+ err_exit "Unable to build package: ${pkg}"

+ fi

+build_packages() {

+ local input_dir="${1}"

+ build_package "${input_dir}/${PKGPROJ_HOST_SERVICE}"

+ build_package "${input_dir}/${PKGPROJ_HOST_UNINSTALLER}"

+ build_package "${input_dir}/${PKGPROJ_HOST}"

+build_dmg() {

+ local input_dir="${1}"

+ local output_dir="${2}"

+ # Create the .dmg.

Mark Mentovai 2012/04/24 20:13:11 It’s advisable to use pkg-dmg instead of this (as

garykac 2012/04/24 22:31:12 OK, I'll make a follow-up cl and send it to you fo

Mark Mentovai 2012/04/24 22:58:19 garykac wrote:

+ echo "Building .dmg..."

+ mkdir -p "${input_dir}/${DMG_DIR}/${PKG_FINAL}"

+ # Copy .mpkg installer.

+ ditto "${input_dir}/${PKG_DIR}/${PKG_FINAL}" \

+ "${input_dir}/${DMG_DIR}/${PKG_FINAL}"

+ # Copy .keystone_install script to top level of .dmg.

+ # Keystone calls this script during upgrades.

+ cp "${input_dir}/Scripts/keystone_install.sh" \

+ "${input_dir}/${DMG_DIR}/.keystone_install"

+ # Build the .dmg from the directory.

+ hdiutil create "${output_dir}/${DMG_FILENAME}" \

+ -srcfolder "${input_dir}/${DMG_DIR}" -ov -quiet

+ if [[ ${?} != 0 || ! -f "${output_dir}/${DMG_FILENAME}" ]]; then

+ err_exit "Unable to create disk image: ${DMG_FILENAME}"

+ fi

+usage() {

+ echo "Usage: ${ME}: output_dir input_dir codesign_keychain codesign_id" >&2

+main() {

+ local output_dir="$(shell_safe_path "${1}")"

+ local input_dir="$(shell_safe_path "${2}")"

+ local codesign_keychain="$(shell_safe_path "${3}")"

+ local codesign_id="${4}"

+ verify_empty_dir "${output_dir}"

+ sign_binaries "${input_dir}" "${codesign_keychain}" "${codesign_id}"

+ build_packages "${input_dir}"

Mark Mentovai 2012/04/24 20:13:11 You’re not signing the package? Or does that just

garykac 2012/04/24 22:31:12 First step is to get the binaries signed since the

Mark Mentovai 2012/04/24 22:58:19 garykac wrote:

+ build_dmg "${input_dir}" "${output_dir}"

+if [[ ${#} -ne 4 ]]; then

+ usage

+ exit 1

+fi

+main "${@}"

+exit ${?}

Property changes on: remoting/host/installer/mac/do_signing.sh

___________________________________________________________________

Added: svn:executable

## -0,0 +1 ##

\ No newline at end of property

Added: svn:eol-style

## -0,0 +1 ##

+LF

\ No newline at end of property

« no previous file with comments | « remoting/host/installer/mac/build.sh ('k') | remoting/remoting.gyp » ('j') | no next file with comments »