mirror of
https://gitlab.com/fdroid/fdroidserver.git
synced 2024-11-04 14:30:11 +01:00
464 lines
17 KiB
Python
Executable File
464 lines
17 KiB
Python
Executable File
#!/usr/bin/env python2
|
|
# -*- coding: utf-8 -*-
|
|
#
|
|
# update.py - part of the FDroid server tools
|
|
# Copyright (C) 2010-11, Ciaran Gultnieks, ciaran@ciarang.com
|
|
#
|
|
# This program is free software: you can redistribute it and/or modify
|
|
# it under the terms of the GNU Affero General Public License as published by
|
|
# the Free Software Foundation, either version 3 of the License, or
|
|
# (at your option) any later version.
|
|
#
|
|
# This program is distributed in the hope that it will be useful,
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
# GNU Affero General Public License for more details.
|
|
#
|
|
# You should have received a copy of the GNU Affero General Public License
|
|
# along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
import sys
|
|
import os
|
|
import shutil
|
|
import glob
|
|
import subprocess
|
|
import re
|
|
import zipfile
|
|
import hashlib
|
|
from xml.dom.minidom import Document
|
|
from optparse import OptionParser
|
|
|
|
#Read configuration...
|
|
repo_name = None
|
|
repo_description = None
|
|
repo_icon = None
|
|
repo_url = None
|
|
execfile('config.py')
|
|
|
|
import common
|
|
|
|
# Parse command line...
|
|
parser = OptionParser()
|
|
parser.add_option("-c", "--createmeta", action="store_true", default=False,
|
|
help="Create skeleton metadata files that are missing")
|
|
parser.add_option("-v", "--verbose", action="store_true", default=False,
|
|
help="Spew out even more information than normal")
|
|
parser.add_option("-q", "--quiet", action="store_true", default=False,
|
|
help="No output, except for warnings and errors")
|
|
parser.add_option("-b", "--buildreport", action="store_true", default=False,
|
|
help="Report on build data status")
|
|
parser.add_option("-i", "--interactive", default=False, action="store_true",
|
|
help="Interactively ask about things that need updating.")
|
|
parser.add_option("-e", "--editor", default="/etc/alternatives/editor",
|
|
help="Specify editor to use in interactive mode. Default "+
|
|
"is /etc/alternatives/editor")
|
|
(options, args) = parser.parse_args()
|
|
|
|
|
|
icon_dir=os.path.join('repo','icons')
|
|
|
|
# Delete and re-create the icon directory...
|
|
if os.path.exists(icon_dir):
|
|
shutil.rmtree(icon_dir)
|
|
os.mkdir(icon_dir)
|
|
|
|
warnings = 0
|
|
|
|
#Make sure we have the repository description...
|
|
if (repo_url is None or repo_name is None or
|
|
repo_icon is None or repo_description is None):
|
|
print "Repository description fields are required in config.py"
|
|
print "See config.sample.py for details"
|
|
sys.exit(1)
|
|
|
|
# Get all apps...
|
|
apps = common.read_metadata(verbose=options.verbose)
|
|
|
|
# Gather information about all the apk files in the repo directory...
|
|
apks = []
|
|
for apkfile in glob.glob(os.path.join('repo','*.apk')):
|
|
|
|
apkfilename = apkfile[5:]
|
|
srcfilename = apkfilename[:-4] + "_src.tar.gz"
|
|
|
|
if not options.quiet:
|
|
print "Processing " + apkfilename
|
|
thisinfo = {}
|
|
thisinfo['apkname'] = apkfilename
|
|
if os.path.exists(os.path.join('repo', srcfilename)):
|
|
thisinfo['srcname'] = srcfilename
|
|
thisinfo['size'] = os.path.getsize(apkfile)
|
|
thisinfo['permissions'] = []
|
|
thisinfo['features'] = []
|
|
p = subprocess.Popen([os.path.join(sdk_path, 'platform-tools', 'aapt'),
|
|
'dump', 'badging', apkfile],
|
|
stdout=subprocess.PIPE)
|
|
output = p.communicate()[0]
|
|
if options.verbose:
|
|
print output
|
|
if p.returncode != 0:
|
|
print "ERROR: Failed to get apk information"
|
|
sys.exit(1)
|
|
for line in output.splitlines():
|
|
if line.startswith("package:"):
|
|
pat = re.compile(".*name='([a-zA-Z0-9.]*)'.*")
|
|
thisinfo['id'] = re.match(pat, line).group(1)
|
|
pat = re.compile(".*versionCode='([0-9]*)'.*")
|
|
thisinfo['versioncode'] = int(re.match(pat, line).group(1))
|
|
pat = re.compile(".*versionName='([^']*)'.*")
|
|
thisinfo['version'] = re.match(pat, line).group(1)
|
|
if line.startswith("application:"):
|
|
pat = re.compile(".*label='([^']*)'.*")
|
|
thisinfo['name'] = re.match(pat, line).group(1)
|
|
pat = re.compile(".*icon='([^']*)'.*")
|
|
thisinfo['iconsrc'] = re.match(pat, line).group(1)
|
|
if line.startswith("sdkVersion:"):
|
|
pat = re.compile(".*'([0-9]*)'.*")
|
|
thisinfo['sdkversion'] = re.match(pat, line).group(1)
|
|
if line.startswith("native-code:"):
|
|
pat = re.compile(".*'([^']*)'.*")
|
|
thisinfo['nativecode'] = re.match(pat, line).group(1)
|
|
if line.startswith("uses-permission:"):
|
|
pat = re.compile(".*'([^']*)'.*")
|
|
perm = re.match(pat, line).group(1)
|
|
if perm.startswith("android.permission."):
|
|
perm = perm[19:]
|
|
thisinfo['permissions'].append(perm)
|
|
if line.startswith("uses-feature:"):
|
|
pat = re.compile(".*'([^']*)'.*")
|
|
perm = re.match(pat, line).group(1)
|
|
if perm.startswith("android.feature."):
|
|
perm = perm[16:]
|
|
thisinfo['features'].append(perm)
|
|
|
|
if not thisinfo.has_key('sdkversion'):
|
|
print " WARNING: no SDK version information found"
|
|
thisinfo['sdkversion'] = 0
|
|
|
|
# Calculate the md5 and sha256...
|
|
m = hashlib.md5()
|
|
sha = hashlib.sha256()
|
|
f = open(apkfile, 'rb')
|
|
while True:
|
|
t = f.read(1024)
|
|
if len(t) == 0:
|
|
break
|
|
m.update(t)
|
|
sha.update(t)
|
|
thisinfo['md5'] = m.hexdigest()
|
|
thisinfo['sha256'] = sha.hexdigest()
|
|
f.close()
|
|
|
|
# Get the signature (or md5 of, to be precise)...
|
|
p = subprocess.Popen(['java', 'getsig',
|
|
os.path.join(os.getcwd(), apkfile)],
|
|
cwd=os.path.join(sys.path[0], 'getsig'),
|
|
stdout=subprocess.PIPE)
|
|
output = p.communicate()[0]
|
|
if options.verbose:
|
|
print output
|
|
if p.returncode != 0 or not output.startswith('Result:'):
|
|
print "ERROR: Failed to get apk signature"
|
|
sys.exit(1)
|
|
thisinfo['sig'] = output[7:].strip()
|
|
|
|
# Extract the icon file...
|
|
apk = zipfile.ZipFile(apkfile, 'r')
|
|
thisinfo['icon'] = (thisinfo['id'] + '.' +
|
|
str(thisinfo['versioncode']) + '.png')
|
|
iconfilename = os.path.join(icon_dir, thisinfo['icon'])
|
|
try:
|
|
iconfile = open(iconfilename, 'wb')
|
|
iconfile.write(apk.read(thisinfo['iconsrc']))
|
|
iconfile.close()
|
|
except:
|
|
print "WARNING: Error retrieving icon file"
|
|
warnings += 1
|
|
apk.close()
|
|
|
|
apks.append(thisinfo)
|
|
|
|
# Some information from the apks needs to be applied up to the application
|
|
# level. When doing this, we use the info from the most recent version's apk.
|
|
for app in apps:
|
|
bestver = 0
|
|
for apk in apks:
|
|
if apk['id'] == app['id']:
|
|
if apk['versioncode'] > bestver:
|
|
bestver = apk['versioncode']
|
|
bestapk = apk
|
|
|
|
if bestver == 0:
|
|
if app['name'] is None:
|
|
app['name'] = app['id']
|
|
app['icon'] = ''
|
|
if app['disabled'] is None:
|
|
print "WARNING: Application " + app['id'] + " has no packages"
|
|
else:
|
|
if app['name'] is None:
|
|
app['name'] = bestapk['name']
|
|
app['icon'] = bestapk['icon']
|
|
|
|
# Generate warnings for apk's with no metadata (or create skeleton
|
|
# metadata files, if requested on the command line)
|
|
for apk in apks:
|
|
found = False
|
|
for app in apps:
|
|
if app['id'] == apk['id']:
|
|
found = True
|
|
break
|
|
if not found:
|
|
if options.createmeta:
|
|
f = open(os.path.join('metadata', apk['id'] + '.txt'), 'w')
|
|
f.write("License:Unknown\n")
|
|
f.write("Web Site:\n")
|
|
f.write("Source Code:\n")
|
|
f.write("Issue Tracker:\n")
|
|
f.write("Summary:" + apk['name'] + "\n")
|
|
f.write("Description:\n")
|
|
f.write(apk['name'] + "\n")
|
|
f.write(".\n")
|
|
f.close()
|
|
print "Generated skeleton metadata for " + apk['id']
|
|
else:
|
|
print "WARNING: " + apk['apkname'] + " (" + apk['id'] + ") has no metadata"
|
|
print " " + apk['name'] + " - " + apk['version']
|
|
|
|
#Sort the app list by name, then the web site doesn't have to by default:
|
|
apps = sorted(apps, key=lambda app: app['name'].upper())
|
|
|
|
# Create the index
|
|
doc = Document()
|
|
|
|
def addElement(name, value, doc, parent):
|
|
el = doc.createElement(name)
|
|
el.appendChild(doc.createTextNode(value))
|
|
parent.appendChild(el)
|
|
|
|
root = doc.createElement("fdroid")
|
|
doc.appendChild(root)
|
|
|
|
repoel = doc.createElement("repo")
|
|
repoel.setAttribute("name", repo_name)
|
|
repoel.setAttribute("icon", os.path.basename(repo_icon))
|
|
repoel.setAttribute("url", repo_url)
|
|
|
|
if repo_keyalias != None:
|
|
|
|
# Generate a certificate fingerprint the same way keytool does it
|
|
# (but with slightly different formatting)
|
|
def cert_fingerprint(data):
|
|
digest = hashlib.sha1(data).digest()
|
|
ret = []
|
|
for i in range(4):
|
|
ret.append(":".join("%02X" % ord(b) for b in digest[i*5:i*5+5]))
|
|
return " ".join(ret)
|
|
|
|
def extract_pubkey():
|
|
p = subprocess.Popen(['keytool', '-exportcert',
|
|
'-alias', repo_keyalias,
|
|
'-keystore', keystore,
|
|
'-storepass', keystorepass],
|
|
stdout=subprocess.PIPE)
|
|
cert = p.communicate()[0]
|
|
if p.returncode != 0:
|
|
print "ERROR: Failed to get repo pubkey"
|
|
sys.exit(1)
|
|
global repo_pubkey_fingerprint
|
|
repo_pubkey_fingerprint = cert_fingerprint(cert)
|
|
return "".join("%02x" % ord(b) for b in cert)
|
|
|
|
repoel.setAttribute("pubkey", extract_pubkey())
|
|
|
|
addElement('description', repo_description, doc, repoel)
|
|
root.appendChild(repoel)
|
|
|
|
apps_inrepo = 0
|
|
apps_disabled = 0
|
|
apps_nopkg = 0
|
|
|
|
for app in apps:
|
|
|
|
if app['disabled'] is None:
|
|
|
|
# Get a list of the apks for this app...
|
|
gotmarketver = False
|
|
apklist = []
|
|
for apk in apks:
|
|
if apk['id'] == app['id']:
|
|
if str(apk['versioncode']) == app['marketvercode']:
|
|
gotmarketver = True
|
|
apklist.append(apk)
|
|
|
|
if len(apklist) == 0:
|
|
apps_nopkg += 1
|
|
else:
|
|
apps_inrepo += 1
|
|
apel = doc.createElement("application")
|
|
apel.setAttribute("id", app['id'])
|
|
root.appendChild(apel)
|
|
|
|
addElement('id', app['id'], doc, apel)
|
|
addElement('name', app['name'], doc, apel)
|
|
addElement('summary', app['summary'], doc, apel)
|
|
addElement('icon', app['icon'], doc, apel)
|
|
addElement('description', app['description'], doc, apel)
|
|
addElement('license', app['license'], doc, apel)
|
|
if 'category' in app:
|
|
addElement('category', app['category'], doc, apel)
|
|
addElement('web', app['web'], doc, apel)
|
|
addElement('source', app['source'], doc, apel)
|
|
addElement('tracker', app['tracker'], doc, apel)
|
|
if app['donate'] != None:
|
|
addElement('donate', app['donate'], doc, apel)
|
|
addElement('marketversion', app['marketversion'], doc, apel)
|
|
addElement('marketvercode', app['marketvercode'], doc, apel)
|
|
if not (app['antifeatures'] is None):
|
|
addElement('antifeatures', app['antifeatures'], doc, apel)
|
|
if app['requiresroot']:
|
|
addElement('requirements', 'root', doc, apel)
|
|
|
|
# Sort the apk list into version order, just so the web site
|
|
# doesn't have to do any work by default...
|
|
apklist = sorted(apklist, key=lambda apk: apk['versioncode'], reverse=True)
|
|
|
|
# Check for duplicates - they will make the client unhappy...
|
|
for i in range(len(apklist) - 1):
|
|
if apklist[i]['versioncode'] == apklist[i+1]['versioncode']:
|
|
print "ERROR - duplicate versions"
|
|
print apklist[i]['apkname']
|
|
print apklist[i+1]['apkname']
|
|
sys.exit(1)
|
|
|
|
for apk in apklist:
|
|
apkel = doc.createElement("package")
|
|
apel.appendChild(apkel)
|
|
addElement('version', apk['version'], doc, apkel)
|
|
addElement('versioncode', str(apk['versioncode']), doc, apkel)
|
|
addElement('apkname', apk['apkname'], doc, apkel)
|
|
if apk.has_key('srcname'):
|
|
addElement('srcname', apk['srcname'], doc, apkel)
|
|
for hash_type in ('sha256', 'md5'):
|
|
if not hash_type in apk:
|
|
continue
|
|
hashel = doc.createElement("hash")
|
|
hashel.setAttribute("type", hash_type)
|
|
hashel.appendChild(doc.createTextNode(apk[hash_type]))
|
|
apkel.appendChild(hashel)
|
|
addElement('sig', apk['sig'], doc, apkel)
|
|
addElement('size', str(apk['size']), doc, apkel)
|
|
addElement('sdkver', str(apk['sdkversion']), doc, apkel)
|
|
perms = ""
|
|
for p in apk['permissions']:
|
|
if len(perms) > 0:
|
|
perms += ","
|
|
perms += p
|
|
if len(perms) > 0:
|
|
addElement('permissions', perms, doc, apkel)
|
|
features = ""
|
|
for f in apk['features']:
|
|
if len(features) > 0:
|
|
features += ","
|
|
features += f
|
|
if len(features) > 0:
|
|
addElement('features', features, doc, apkel)
|
|
|
|
if options.buildreport:
|
|
if len(app['builds']) == 0:
|
|
print ("WARNING: No builds defined for " + app['id'] +
|
|
" Source: " + app['source'])
|
|
warnings += 1
|
|
else:
|
|
if app['marketvercode'] != '0':
|
|
gotbuild = False
|
|
for build in app['builds']:
|
|
if build['vercode'] == app['marketvercode']:
|
|
gotbuild = True
|
|
if not gotbuild:
|
|
print ("WARNING: No build data for market version of "
|
|
+ app['id'] + " (" + app['marketversion']
|
|
+ ") " + app['source'])
|
|
warnings += 1
|
|
|
|
# If we don't have the market version, check if there is a build
|
|
# with a commit ID starting with '!' - this means we can't build it
|
|
# for some reason, and don't want hassling about it...
|
|
if not gotmarketver and app['marketvercode'] != '0':
|
|
for build in app['builds']:
|
|
if build['vercode'] == app['marketvercode']:
|
|
gotmarketver = True
|
|
|
|
# Output a message of harassment if we don't have the market version:
|
|
if not gotmarketver and app['marketvercode'] != '0':
|
|
addr = app['source']
|
|
print "WARNING: Don't have market version (" + app['marketversion'] + ") of " + app['name']
|
|
print " (" + app['id'] + ") " + addr
|
|
warnings += 1
|
|
if options.verbose:
|
|
# A bit of extra debug info, basically for diagnosing
|
|
# app developer mistakes:
|
|
print " Market vercode:" + app['marketvercode']
|
|
print " Got:"
|
|
for apk in apks:
|
|
if apk['id'] == app['id']:
|
|
print " " + str(apk['versioncode']) + " - " + apk['version']
|
|
if options.interactive:
|
|
print "Build data out of date for " + app['id']
|
|
while True:
|
|
answer = raw_input("[I]gnore, [E]dit or [Q]uit?").lower()
|
|
if answer == 'i':
|
|
break
|
|
elif answer == 'e':
|
|
subprocess.call([options.editor,
|
|
os.path.join('metadata',
|
|
app['id'] + '.txt')])
|
|
break
|
|
elif answer == 'q':
|
|
sys.exit(0)
|
|
else:
|
|
apps_disabled += 1
|
|
|
|
of = open(os.path.join('repo','index.xml'), 'wb')
|
|
output = doc.toxml()
|
|
of.write(output)
|
|
of.close()
|
|
|
|
if repo_keyalias != None:
|
|
|
|
if not options.quiet:
|
|
print "Creating signed index."
|
|
print "Key fingerprint:", repo_pubkey_fingerprint
|
|
|
|
#Create a jar of the index...
|
|
p = subprocess.Popen(['jar', 'cf', 'index.jar', 'index.xml'],
|
|
cwd='repo', stdout=subprocess.PIPE)
|
|
output = p.communicate()[0]
|
|
if options.verbose:
|
|
print output
|
|
if p.returncode != 0:
|
|
print "ERROR: Failed to create jar file"
|
|
sys.exit(1)
|
|
|
|
# Sign the index...
|
|
p = subprocess.Popen(['jarsigner', '-keystore', keystore,
|
|
'-storepass', keystorepass, '-keypass', keypass,
|
|
os.path.join('repo', 'index.jar') , repo_keyalias], stdout=subprocess.PIPE)
|
|
output = p.communicate()[0]
|
|
if p.returncode != 0:
|
|
print "Failed to sign index"
|
|
print output
|
|
sys.exit(1)
|
|
if options.verbose:
|
|
print output
|
|
|
|
#Copy the repo icon into the repo directory...
|
|
iconfilename = os.path.join(icon_dir, os.path.basename(repo_icon))
|
|
shutil.copyfile(repo_icon, iconfilename)
|
|
|
|
print "Finished."
|
|
print str(apps_inrepo) + " apps in repo"
|
|
print str(apps_disabled) + " disabled"
|
|
print str(apps_nopkg) + " with no packages"
|
|
print str(warnings) + " warnings"
|
|
|