Hans-Christoph Steiner
a7d1d9a54d
overwrite password files if they exist
...
The .fdroid.*.txt password files are only meant to be a conduit for the
passwords, so blow them away everytime. The canonical password is stored
in config.py.
It might makes sense to replace these files with env vars using
-storepass:env and -keypass:env. I figured that the passwords are already
in a file, config.py, so adding more files in the same location with the
same perms would not increase the risk at all.
2014-04-22 22:59:27 -04:00
Hans-Christoph Steiner
0cbe9690c9
update manual to use public https:// URLs to git repos
...
git@gitlab.com URLs require a gitlab login, https:// URLs do not
2014-04-22 22:59:27 -04:00
Hans-Christoph Steiner
e59e900a64
fix warnings in python files manifest
...
warning: no files found matching 'jenkins-build.sh'
warning: no files found matching 'buildserver/cookbooks'
2014-04-22 22:59:27 -04:00
Hans-Christoph Steiner
6f6c074a6b
when running pip install
tests, cache downloads from pypi
...
Since this runs frequently without much change, it makes sense to cache the
downloaded source packages as much as possible. There are probably better
ways to do this, but this is really easy.
https://stackoverflow.com/questions/4806448/how-do-i-install-from-a-local-cache-with-pip
2014-04-22 22:59:27 -04:00
Daniel Martí
82e88fbcf6
Support custom maven/gradle resource paths
2014-04-22 11:39:29 +02:00
Daniel Martí
5b10409967
Run maven with jar.sign.skip=true too
2014-04-22 11:22:53 +02:00
Daniel Martí
b2406c3b57
Reflect new summary char limit
2014-04-20 19:15:40 +02:00
Daniel Martí
cd666bb8e8
Properly complete partially written vercodes
2014-04-18 23:56:25 +02:00
Daniel Martí
2f3a92cd29
Count warnings and apps in lint
2014-04-18 21:17:06 +02:00
Daniel Martí
6d8dd4bed2
Add summary-related lint warnings
2014-04-18 20:54:44 +02:00
Daniel Martí
00fa44e916
Only do the latest five tags when using UCM:Tags on git
2014-04-17 21:05:18 +02:00
Daniel Martí
3736da3761
No longer use universal_newlines
...
It was added in an attempt to get git clone/fetch output, which did not
succeed.
2014-04-17 20:47:13 +02:00
Ciaran Gultnieks
181fc3d07b
Fix donate/flattr links in web repo browser
2014-04-17 12:12:50 +01:00
Ciaran Gultnieks
4e90e002f0
Change widget implementation to allow multiple instances
2014-04-17 12:06:16 +01:00
Ciaran Gultnieks
11e5cc1b03
Merge branch 'master' into 'master'
...
add Flattr button to app details pageMaster
2014-04-17 11:06:35 +00:00
Daniel Martí
f79ded4a26
Also ignore .bzr when scanning
2014-04-16 21:06:24 +02:00
Daniel Martí
559ad9ef5b
Also glob the 'rm' field
2014-04-15 23:58:12 +02:00
Daniel Martí
d4f9f341ed
Glob scanignore and scandelete
...
These fields can still be used without globbing, but globbing can be very
useful in some cases.
2014-04-15 23:53:44 +02:00
Daniel Martí
8f0f896d91
Rewrite much of the source scanner
...
* Group apk, jar and zip files in the same case
* Use regex to support more patterns and be more flexible
* Only check for usual suspects in jar files (saves time)
* Also catch unknown zip-like files as warnings
2014-04-15 23:33:54 +02:00
Daniel Martí
b92b722c6d
Fix: some apks have a zip mimetype instead of a jar one
2014-04-15 17:50:08 +02:00
Daniel Martí
5c483a5484
Fix apk path on gradle builds with many subdirs
2014-04-15 11:50:02 +02:00
Ciaran Gultnieks
a520076331
Merge branch 'master' into 'master'
...
Updated manual with gitlab repo links
2014-04-13 18:57:05 +00:00
viccuad
64e5e1dd9d
updated gitorious repo links to gitlab repo links
2014-04-12 17:07:31 +02:00
Torsten Grote
05b61cc57d
remove border around Flattr button
2014-04-12 13:33:07 +02:00
Torsten Grote
0e09686405
add Flattr button to app details page
2014-04-12 13:27:34 +02:00
Daniel Martí
5f2c348b40
Support gradle variables without an equals sign
2014-04-12 01:00:59 +02:00
Daniel Martí
67054c7c6f
Fix counting of scanner problems
2014-04-12 00:18:20 +02:00
Ciaran Gultnieks
81e6fb8eb5
Point wiki current/history links to gitlab
2014-04-11 16:44:33 +01:00
Ciaran Gultnieks
c3a9b1b0c5
Merge branch 'master' into 'master'
...
fix tests
this fixes the copying of APKs in the test script
2014-04-10 16:46:17 +00:00
Hans-Christoph Steiner
49387b7108
use FDroid-standard naming when copying APKs for tests
...
This makes sure that there are no APKs with duplicate version codes.
2014-04-10 12:37:07 -04:00
Hans-Christoph Steiner
234736f306
move run-tests to /bin/bash so we can use bashisms
2014-04-10 12:31:23 -04:00
Daniel Martí
f4ee767013
Fix Categories: default value
2014-04-10 17:27:53 +02:00
Ciaran Gultnieks
5b21f86af2
Add buildserver details to AndroidManifest.xml
2014-04-10 13:59:17 +01:00
Ciaran Gultnieks
f95eccf307
Put commit hash of fdroidserver in use onto buildserver
2014-04-10 13:58:42 +01:00
Ciaran Gultnieks
b7420192eb
Support different identity file structures
...
Something to do with vagrant/paramiko versioning.
2014-04-10 13:57:16 +01:00
Ciaran Gultnieks
8fdfc47f84
Fix snapshot logging error
2014-04-10 13:56:45 +01:00
Daniel Martí
2f43d30884
Specify that scanner warnings are not counted
2014-04-08 18:49:59 +02:00
Ciaran Gultnieks
e8c47765ae
Merge branch 'master' into 'master'
...
implemeted support for using a smartcard for the repo signing key
This changeset implements using a smartcard (HSM) as the keystore for the signing key. It also fixes lots of little bugs in the `fdroid init` process.
2014-04-08 08:26:37 +00:00
Hans-Christoph Steiner
0dd8116059
add note about automatically generated signing key after init
2014-04-07 16:00:18 -04:00
Hans-Christoph Steiner
00b89c05c5
warn user if smartcard keystore is set but opensc is not installed
2014-04-07 16:00:18 -04:00
Hans-Christoph Steiner
3829d37d34
support repo signing with a key on a smartcard
...
This assumes that the smartcard is already setup with a signing key. init
does not generate a key on the smartcard, and skips genkey() if things are
configured to use a smartcard.
This also does not touch APK signing because that is a much more elaborate
question, since each app is signed by its own key.
2014-04-07 16:00:18 -04:00
Hans-Christoph Steiner
9945045f1b
fix bug setting repo_keyalias in init
2014-04-07 16:00:18 -04:00
Hans-Christoph Steiner
f582cd7a9e
fix bug listing new key created in init
...
Oops, a typo with a ] in e53092cffa
2014-04-07 16:00:18 -04:00
Hans-Christoph Steiner
faf0c4381f
add test case were init generates a keystore and uses it
2014-04-07 16:00:18 -04:00
Hans-Christoph Steiner
b41f9e67a9
if keystore is given as arg to init, create keystore if it does not exist
...
Previously, `fdroid init --keystore /tmp/foo` expected the keystore to
exist, or it quit with an error. But I've changed my mind, I think it is
useful to have it generate a new keystore at that location if it does not
exist. For example, in tests/run-tests.sh. It still will not clobber an
existing file at that location.
2014-04-07 16:00:18 -04:00
Hans-Christoph Steiner
2bd62239f7
'smartcardoptions' config item for setting up HSMs with fdroid
...
These options are needed to configure Java's keytool and jarsigner to use
a Hardware Security Module aka HSM aka smartcard. The defaults provided
are meant to make things work as easily as possible.
2014-04-07 16:00:18 -04:00
Hans-Christoph Steiner
0950cdac09
make repo_keyalias like a config option: leave it commented out
...
Before, the code relies on repo_keyalias being None, which does not feel
conffile-like. Now, its commented out if its not set.
2014-04-07 16:00:18 -04:00
Hans-Christoph Steiner
f1ae3d3fd0
use default keystore path when generating a new setup with init
...
Before, the path to the keystore was also hardcoded in init.py, this makes
init now get it from the defaults set in common.py.
2014-04-07 16:00:17 -04:00
Hans-Christoph Steiner
0736367675
when generating config.py during init, uncomment changed options
...
The defaults are set in config.py and are often commented out. Before, the
regex would only change the value, but leave it commented out. Now, it
will also uncomment it.
2014-04-07 16:00:17 -04:00
Hans-Christoph Steiner
40fdc2a943
improved error messages related to missing/non-functional SDK paths
2014-04-07 16:00:17 -04:00