diff options
| author | Kenneth Skovhede <kenneth@hexad.dk> | 2017-07-03 23:50:10 +0300 |
|---|---|---|
| committer | Kenneth Skovhede <kenneth@hexad.dk> | 2017-07-03 23:50:10 +0300 |
| commit | 396ea160dbb969dc8fbadd666fa45775939eb119 (patch) | |
| tree | 1ae45f8828c2f5f9bedc571db706059ce2c3dde5 | |
| parent | 9e881e82f3c30934c8aeb30b128a8b7bd69cc736 (diff) | |
Updated Synology build script to include the icons in the `INFO` file, and to sign the packages in a Synology compatible way
| -rw-r--r-- | Installer/Synology/make-binary-package.sh | 68 |
1 files changed, 65 insertions, 3 deletions
diff --git a/Installer/Synology/make-binary-package.sh b/Installer/Synology/make-binary-package.sh index f974c5ccd..8d9994a0a 100644 --- a/Installer/Synology/make-binary-package.sh +++ b/Installer/Synology/make-binary-package.sh @@ -10,11 +10,22 @@ DIRNAME=`echo "${FILENAME}" | cut -d "_" -f 1` VERSION=`echo "${DIRNAME}" | cut -d "-" -f 2` DATE_STAMP=`LANG=C date -R` BASE_FILE_NAME="${FILENAME%.*}" +TMPDIRNAME="${BASE_FILE_NAME}-extract" +MONO=/Library/Frameworks/Mono.framework/Commands/mono +GPG_KEYFILE="${HOME}/.config/signkeys/Duplicati/updater-gpgkey.key" + +# Sort on macOS does not have -V / --version-sort +# https://stackoverflow.com/questions/4493205/unix-sort-of-version-numbers +SORT_OPTIONS="-t. -k 1,1n -k 2,2n -k 3,3n -k 4,4n" if [ -d "${DIRNAME}" ]; then rm -rf "${DIRNAME}" fi +if [ -d "${TMPDIRNAME}" ]; then + rm -rf "${TMPDIRNAME}" +fi + if [ -f "package.tgz" ]; then rm -rf "package.tgz" fi @@ -23,7 +34,17 @@ if [ -f "${BASE_FILE_NAME}.spk" ]; then rm -rf "${BASE_FILE_NAME}.spk" fi -unzip -d "${DIRNAME}" "$1" +if [ -f "${BASE_FILE_NAME}.spk.tmp" ]; then + rm -rf "${BASE_FILE_NAME}.spk.tmp" +fi + +if [ -f "${BASE_FILE_NAME}.signature" ]; then + rm -rf "${BASE_FILE_NAME}.spk.signature" +fi + +TIMESERVER="http://timestamp.synology.com/timestamp.php" + +unzip -q -d "${DIRNAME}" "$1" for n in "../oem" "../../oem" "../../../oem" do @@ -67,20 +88,61 @@ cp ../dsm.duplicati.conf . DIRSIZE_KB=`BLOCKSIZE=1024 du -s | cut -d '.' -f 1` let "DIRSIZE=DIRSIZE_KB*1024" -tar cvf ../package.tgz ./* +tar cf ../package.tgz ./* cd .. rm -rf "${DIRNAME}" +ICON_72=$(openssl base64 -A -in PACKAGE_ICON.PNG) +ICON_256=$(openssl base64 -A -in PACKAGE_ICON_256.PNG) + git checkout INFO echo "version=\"${VERSION}\"" >> "INFO" MD5=`md5 "package.tgz" | awk -F ' ' '{print $NF}'` echo "checksum=\"${MD5}\"" >> "INFO" echo "extractsize=\"${DIRSIZE}\"" >> "INFO" +echo "package_icon=\"${ICON_72}\"" >> "INFO" +echo "package_icon_256=\"${ICON_256}\"" >> "INFO" chmod +x scripts/* tar cf "${BASE_FILE_NAME}.spk" INFO LICENSE *.PNG package.tgz scripts conf WIZARD_UIFILES + git checkout INFO +rm package.tgz + +if [ -f "${GPG_KEYFILE}" ]; then + if [ "z${KEYFILE_PASSWORD}" == "z" ]; then + echo -n "Enter keyfile password: " + read -s KEYFILE_PASSWORD + echo + fi + + GPGDATA=`"${MONO}" "../../BuildTools/AutoUpdateBuilder/bin/Debug/SharpAESCrypt.exe" d "${KEYFILE_PASSWORD}" "${GPG_KEYFILE}"` + if [ ! $? -eq 0 ]; then + echo "Decrypting GPG keyfile failed" + exit 1 + fi + GPGID=`echo "${GPGDATA}" | head -n 1` + GPGKEY=`echo "${GPGDATA}" | head -n 2 | tail -n 1` +else + echo "No GPG keyfile found, skipping gpg signing" +fi + +if [ "z${GPGID}" != "z" ]; then + # Now codesign the spk file + mkdir "${TMPDIRNAME}" + tar xf "${BASE_FILE_NAME}.spk" -C "${TMPDIRNAME}" + cat $(find ${TMPDIRNAME} -type f | sort ${SORT_OPTIONS}) > "${BASE_FILE_NAME}.spk.tmp" + + gpg2 --ignore-time-conflict --ignore-valid-from --yes --batch --armor --detach-sign --default-key="${GPGID}" --output "${BASE_FILE_NAME}.signature" "${BASE_FILE_NAME}.spk.tmp" + rm "${BASE_FILE_NAME}.spk.tmp" + + curl --silent --form "file=@${BASE_FILE_NAME}.signature" "${TIMESERVER}" > "${TMPDIRNAME}/syno_signature.asc" + rm "${BASE_FILE_NAME}.signature" + + rm "${BASE_FILE_NAME}.spk" + tar cf "${BASE_FILE_NAME}.spk" -C "${TMPDIRNAME}" `ls -1 ${TMPDIRNAME}` -rm package.tgz
\ No newline at end of file + rm -rf "${TMPDIRNAME}" +fi
\ No newline at end of file |