Welcome to mirror list, hosted at ThFree Co, Russian Federation.

git.blender.org/blender.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/build_files/buildbot/codesign/archive_with_indicator.py
AgeCommit message (Collapse)Author
2020-11-13Codesign: Report codesign errors from server to workerSergey Sharybin
Pass codesign errors (if any) from codesign buildbot server to the buildbot worker, so that the latter one can abort build process if the error happens. This solves issues when non-properly-notarized DMG package gets uploaded to the buildbot website.
2020-02-21Codesign: Make file watcher robust for network errorsSergey Sharybin
2020-02-17Codesign: Harden check for archive being ready for signSergey Sharybin
Seems like sometimes files are being only partially ready, which makes it so there are unsigned files, failing to deliver fully signed bundle. Now expected archive file size is stored into stamp file and is checked against size of the archive file on another side. There are some bare prints used for debugging, would need to switch it to a proper logger (or to be removed).
2020-02-12Codesign: Attempt to make macOS codesign more reliableSergey Sharybin
Is still sometimes .ready file appears prior to an actual archive.
2020-02-04Codesign: Fix script for WindowsSergey Sharybin
Apparently, there is no os.sync() on Windows.
2020-02-04Codesign: Possible fix for stamp appearing prior to archiveSergey Sharybin
From looking into builder's logs it seems that stamp file is picked up prior to actual archive: sometimes worker reports missing archive file, from a code path which is only possible if there is a stamp file. Could be something with IO scheduling where bigger file is sent to Samba server after smaller file. Hopefully with this change this will not happen anymore.
2019-11-13Initial implementation of code signing routinesSergey Sharybin
This changes integrates code signing steps into a buildbot worker process. The configuration requires having a separate machine running with a shared folder access between the signing machine and worker machine. Actual signing is happening as a "POST-INSTALL" script run by CMake, which allows to sign any binary which ends up in the final bundle. Additionally, such way allows to avoid signing binaries in the build folder (if we were signing as a built process, which iwas another alternative). Such complexity is needed on platforms which are using CPack to generate final bundle: CPack runs INSTALL target into its own location, so it is useless to run signing on a folder which is considered INSTALL by the buildbot worker. There is a signing script which can be used as a standalone tool, making it possible to hook up signing for macOS's bundler. There is a dummy Linux signer implementation, which can be activated by returning True from mock_codesign in linux_code_signer.py. Main purpose of this signer is to give an ability to develop the scripts on Linux environment, without going to Windows VM. The code is based on D6036 from Nathan Letwory. Differential Revision: https://developer.blender.org/D6216
    generated by cgit v1.2.3 (git 2.25.1) at 2024-08-21 20:21:06 +0300