#!/usr/bin/env python2 # -*- coding: utf-8 -*- # # update.py - part of the FDroid server tools # Copyright (C) 2010-11, Ciaran Gultnieks, ciaran@ciarang.com # # This program is free software: you can redistribute it and/or modify # it under the terms of the GNU Affero General Public License as published by # the Free Software Foundation, either version 3 of the License, or # (at your option) any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU Affero General Public License for more details. # # You should have received a copy of the GNU Affero General Public License # along with this program. If not, see . import sys import os import shutil import glob import subprocess import re import zipfile import hashlib from xml.dom.minidom import Document from optparse import OptionParser #Read configuration... repo_name = None repo_description = None repo_icon = None repo_url = None execfile('config.py') import common # Parse command line... parser = OptionParser() parser.add_option("-c", "--createmeta", action="store_true", default=False, help="Create skeleton metadata files that are missing") parser.add_option("-v", "--verbose", action="store_true", default=False, help="Spew out even more information than normal") parser.add_option("-q", "--quiet", action="store_true", default=False, help="No output, except for warnings and errors") parser.add_option("-b", "--buildreport", action="store_true", default=False, help="Report on build data status") parser.add_option("-i", "--interactive", default=False, action="store_true", help="Interactively ask about things that need updating.") parser.add_option("-e", "--editor", default="/etc/alternatives/editor", help="Specify editor to use in interactive mode. Default "+ "is /etc/alternatives/editor") (options, args) = parser.parse_args() icon_dir=os.path.join('repo','icons') # Delete and re-create the icon directory... if os.path.exists(icon_dir): shutil.rmtree(icon_dir) os.mkdir(icon_dir) warnings = 0 #Make sure we have the repository description... if (repo_url is None or repo_name is None or repo_icon is None or repo_description is None): print "Repository description fields are required in config.py" print "See config.sample.py for details" sys.exit(1) # Get all apps... apps = common.read_metadata(verbose=options.verbose) # Copy apks and source tarballs for stuff we've built from source that # is flagged to be included in the repo... for app in apps: if app['usebuilt']: if not options.quiet: print "Copying built files for " + app['id'] src = os.path.join('built', app['id'] + "_*") for file in glob.glob(src): shutil.copy(file, 'repo/') # Gather information about all the apk files in the repo directory... apks = [] for apkfile in glob.glob(os.path.join('repo','*.apk')): apkfilename = apkfile[5:] srcfilename = apkfilename[:-4] + "_src.tar.gz" if not options.quiet: print "Processing " + apkfilename thisinfo = {} thisinfo['apkname'] = apkfilename if os.path.exists(os.path.join('repo', srcfilename)): thisinfo['srcname'] = srcfilename thisinfo['size'] = os.path.getsize(apkfile) thisinfo['permissions'] = [] thisinfo['features'] = [] p = subprocess.Popen([os.path.join(sdk_path, 'platform-tools', 'aapt'), 'dump', 'badging', apkfile], stdout=subprocess.PIPE) output = p.communicate()[0] if options.verbose: print output if p.returncode != 0: print "ERROR: Failed to get apk information" sys.exit(1) for line in output.splitlines(): if line.startswith("package:"): pat = re.compile(".*name='([a-zA-Z0-9.]*)'.*") thisinfo['id'] = re.match(pat, line).group(1) pat = re.compile(".*versionCode='([0-9]*)'.*") thisinfo['versioncode'] = int(re.match(pat, line).group(1)) pat = re.compile(".*versionName='([^']*)'.*") thisinfo['version'] = re.match(pat, line).group(1) if line.startswith("application:"): pat = re.compile(".*label='([^']*)'.*") thisinfo['name'] = re.match(pat, line).group(1) pat = re.compile(".*icon='([^']*)'.*") thisinfo['iconsrc'] = re.match(pat, line).group(1) if line.startswith("sdkVersion:"): pat = re.compile(".*'([0-9]*)'.*") thisinfo['sdkversion'] = re.match(pat, line).group(1) if line.startswith("native-code:"): pat = re.compile(".*'([^']*)'.*") thisinfo['nativecode'] = re.match(pat, line).group(1) if line.startswith("uses-permission:"): pat = re.compile(".*'([^']*)'.*") perm = re.match(pat, line).group(1) if perm.startswith("android.permission."): perm = perm[19:] thisinfo['permissions'].append(perm) if line.startswith("uses-feature:"): pat = re.compile(".*'([^']*)'.*") perm = re.match(pat, line).group(1) if perm.startswith("android.feature."): perm = perm[16:] thisinfo['features'].append(perm) if not thisinfo.has_key('sdkversion'): print " WARNING: no SDK version information found" thisinfo['sdkversion'] = 0 # Calculate the md5 and sha256... m = hashlib.md5() sha = hashlib.sha256() f = open(apkfile, 'rb') while True: t = f.read(1024) if len(t) == 0: break m.update(t) sha.update(t) thisinfo['md5'] = m.hexdigest() thisinfo['sha256'] = sha.hexdigest() f.close() # Get the signature (or md5 of, to be precise)... p = subprocess.Popen(['java', 'getsig', os.path.join(os.getcwd(), apkfile)], cwd=os.path.join(sys.path[0], 'getsig'), stdout=subprocess.PIPE) output = p.communicate()[0] if options.verbose: print output if p.returncode != 0 or not output.startswith('Result:'): print "ERROR: Failed to get apk signature" sys.exit(1) thisinfo['sig'] = output[7:].strip() # Extract the icon file... apk = zipfile.ZipFile(apkfile, 'r') thisinfo['icon'] = (thisinfo['id'] + '.' + str(thisinfo['versioncode']) + '.png') iconfilename = os.path.join(icon_dir, thisinfo['icon']) try: iconfile = open(iconfilename, 'wb') iconfile.write(apk.read(thisinfo['iconsrc'])) iconfile.close() except: print "WARNING: Error retrieving icon file" warnings += 1 apk.close() apks.append(thisinfo) # Some information from the apks needs to be applied up to the application # level. When doing this, we use the info from the most recent version's apk. for app in apps: bestver = 0 for apk in apks: if apk['id'] == app['id']: if apk['versioncode'] > bestver: bestver = apk['versioncode'] bestapk = apk if bestver == 0: if app['name'] is None: app['name'] = app['id'] app['icon'] = '' if app['disabled'] is None: print "WARNING: Application " + app['id'] + " has no packages" else: if app['name'] is None: app['name'] = bestapk['name'] app['icon'] = bestapk['icon'] # Generate warnings for apk's with no metadata (or create skeleton # metadata files, if requested on the command line) for apk in apks: found = False for app in apps: if app['id'] == apk['id']: found = True break if not found: if options.createmeta: f = open(os.path.join('metadata', apk['id'] + '.txt'), 'w') f.write("License:Unknown\n") f.write("Web Site:\n") f.write("Source Code:\n") f.write("Issue Tracker:\n") f.write("Summary:" + apk['name'] + "\n") f.write("Description:\n") f.write(apk['name'] + "\n") f.write(".\n") f.close() print "Generated skeleton metadata for " + apk['id'] else: print "WARNING: " + apk['apkname'] + " (" + apk['id'] + ") has no metadata" print " " + apk['name'] + " - " + apk['version'] #Sort the app list by name, then the web site doesn't have to by default: apps = sorted(apps, key=lambda app: app['name'].upper()) # Create the index doc = Document() def addElement(name, value, doc, parent): el = doc.createElement(name) el.appendChild(doc.createTextNode(value)) parent.appendChild(el) root = doc.createElement("fdroid") doc.appendChild(root) repoel = doc.createElement("repo") repoel.setAttribute("name", repo_name) repoel.setAttribute("icon", os.path.basename(repo_icon)) repoel.setAttribute("url", repo_url) if repo_keyalias != None: # Generate a certificate fingerprint the same way keytool does it # (but with slightly different formatting) def cert_fingerprint(data): digest = hashlib.sha1(data).digest() ret = [] for i in range(4): ret.append(":".join("%02X" % ord(b) for b in digest[i*5:i*5+5])) return " ".join(ret) def extract_pubkey(): p = subprocess.Popen(['keytool', '-exportcert', '-alias', repo_keyalias, '-keystore', keystore, '-storepass', keystorepass], stdout=subprocess.PIPE) cert = p.communicate()[0] if p.returncode != 0: print "ERROR: Failed to get repo pubkey" sys.exit(1) global repo_pubkey_fingerprint repo_pubkey_fingerprint = cert_fingerprint(cert) return "".join("%02x" % ord(b) for b in cert) repoel.setAttribute("pubkey", extract_pubkey()) addElement('description', repo_description, doc, repoel) root.appendChild(repoel) apps_inrepo = 0 apps_disabled = 0 apps_nopkg = 0 for app in apps: if app['disabled'] is None: # Get a list of the apks for this app... gotmarketver = False apklist = [] for apk in apks: if apk['id'] == app['id']: if str(apk['versioncode']) == app['marketvercode']: gotmarketver = True apklist.append(apk) if len(apklist) == 0: apps_nopkg += 1 else: apps_inrepo += 1 apel = doc.createElement("application") apel.setAttribute("id", app['id']) root.appendChild(apel) addElement('id', app['id'], doc, apel) addElement('name', app['name'], doc, apel) addElement('summary', app['summary'], doc, apel) addElement('icon', app['icon'], doc, apel) addElement('description', app['description'], doc, apel) addElement('license', app['license'], doc, apel) addElement('web', app['web'], doc, apel) addElement('source', app['source'], doc, apel) addElement('tracker', app['tracker'], doc, apel) if app['donate'] != None: addElement('donate', app['donate'], doc, apel) addElement('marketversion', app['marketversion'], doc, apel) addElement('marketvercode', app['marketvercode'], doc, apel) if not (app['antifeatures'] is None): addElement('antifeatures', app['antifeatures'], doc, apel) if app['requiresroot']: addElement('requirements', 'root', doc, apel) # Sort the apk list into version order, just so the web site # doesn't have to do any work by default... apklist = sorted(apklist, key=lambda apk: apk['versioncode'], reverse=True) # Check for duplicates - they will make the client unhappy... for i in range(len(apklist) - 1): if apklist[i]['versioncode'] == apklist[i+1]['versioncode']: print "ERROR - duplicate versions" print apklist[i]['apkname'] print apklist[i+1]['apkname'] sys.exit(1) for apk in apklist: apkel = doc.createElement("package") apel.appendChild(apkel) addElement('version', apk['version'], doc, apkel) addElement('versioncode', str(apk['versioncode']), doc, apkel) addElement('apkname', apk['apkname'], doc, apkel) if apk.has_key('srcname'): addElement('srcname', apk['srcname'], doc, apkel) for hash_type in ('sha256', 'md5'): if not hash_type in apk: continue hashel = doc.createElement("hash") hashel.setAttribute("type", hash_type) hashel.appendChild(doc.createTextNode(apk[hash_type])) apkel.appendChild(hashel) addElement('sig', apk['sig'], doc, apkel) addElement('size', str(apk['size']), doc, apkel) addElement('sdkver', str(apk['sdkversion']), doc, apkel) perms = "" for p in apk['permissions']: if len(perms) > 0: perms += "," perms += p if len(perms) > 0: addElement('permissions', perms, doc, apkel) features = "" for f in apk['features']: if len(features) > 0: features += "," features += f if len(features) > 0: addElement('features', features, doc, apkel) if options.buildreport: if len(app['builds']) == 0: print ("WARNING: No builds defined for " + app['id'] + " Source: " + app['source']) warnings += 1 else: if app['marketvercode'] != '0': gotbuild = False for build in app['builds']: if build['vercode'] == app['marketvercode']: gotbuild = True if not gotbuild: print ("WARNING: No build data for market version of " + app['id'] + " (" + app['marketversion'] + ") " + app['source']) warnings += 1 # If we don't have the market version, check if there is a build # with a commit ID starting with '!' - this means we can't build it # for some reason, and don't want hassling about it... if not gotmarketver and app['marketvercode'] != '0': for build in app['builds']: if build['vercode'] == app['marketvercode']: gotmarketver = True # Output a message of harassment if we don't have the market version: if not gotmarketver and app['marketvercode'] != '0': if app['usebuilt']: addr = app['source'] else: addr = app['web'] print "WARNING: Don't have market version (" + app['marketversion'] + ") of " + app['name'] print " (" + app['id'] + ") " + addr warnings += 1 if options.verbose: # A bit of extra debug info, basically for diagnosing # app developer mistakes: print " Market vercode:" + app['marketvercode'] print " Got:" for apk in apks: if apk['id'] == app['id']: print " " + str(apk['versioncode']) + " - " + apk['version'] if options.interactive: print "Build data out of date for " + app['id'] while True: answer = raw_input("[I]gnore, [E]dit or [Q]uit?").lower() if answer == 'i': break elif answer == 'e': subprocess.call([options.editor, os.path.join('metadata', app['id'] + '.txt')]) break elif answer == 'q': sys.exit(0) else: apps_disabled += 1 of = open(os.path.join('repo','index.xml'), 'wb') output = doc.toxml() of.write(output) of.close() if repo_keyalias != None: if not options.quiet: print "Creating signed index." print "Key fingerprint:", repo_pubkey_fingerprint #Create a jar of the index... p = subprocess.Popen(['jar', 'cf', 'index.jar', 'index.xml'], cwd='repo', stdout=subprocess.PIPE) output = p.communicate()[0] if options.verbose: print output if p.returncode != 0: print "ERROR: Failed to create jar file" sys.exit(1) # Sign the index... p = subprocess.Popen(['jarsigner', '-keystore', keystore, '-storepass', keystorepass, '-keypass', keypass, os.path.join('repo', 'index.jar') , repo_keyalias], stdout=subprocess.PIPE) output = p.communicate()[0] if p.returncode != 0: print "Failed to sign index" print output sys.exit(1) if options.verbose: print output #Copy the repo icon into the repo directory... iconfilename = os.path.join(icon_dir, os.path.basename(repo_icon)) shutil.copyfile(repo_icon, iconfilename) print "Finished." print str(apps_inrepo) + " apps in repo" print str(apps_disabled) + " disabled" print str(apps_nopkg) + " with no packages" print str(warnings) + " warnings"