Changeset 25875
- Timestamp:
- 12/16/20 15:41:15 (4 years ago)
- Location:
- issm/trunk-jpl/packagers/mac
- Files:
-
- 4 edited
Legend:
- Unmodified
- Added
- Removed
-
issm/trunk-jpl/packagers/mac/package-issm-mac-binaries-matlab.sh
r25874 r25875 16 16 # 17 17 # Options: 18 # -c/--cleanup Remove lock file from signed package repository (use if19 # build is aborted to allow for subsequent fresh build)20 18 # -n/--notarizeonly Sign/notarize only (use if signing/notarization fails 21 19 # to skip tests/packaging) … … 25 23 # transfer fails for some reason to skip testing and 26 24 # signing) 25 # -u/--unlock Remove lock file from signed package repository (use if 26 # build is aborted to allow for subsequent fresh build) 27 27 # 28 28 # Debugging: … … 92 92 ## Functions 93 93 # 94 validate_signed_repo_copy(){ 95 # Check out copy of repository for signed binaries if it does not exist 96 # (e.g. 'Check-out Strategy' was set to 'Use 'svn update' as much as 97 # possible'; initial checkout failed) 98 if [ ! -d ${SIGNED_REPO_COPY} && ! -d ${SIGNED_REPO_COPY}/.svn ]; then 99 # Check out copy of SVN repository for signed packages 100 # 101 # NOTE: Get empty copy because we do not want to have to check out package from 102 # previous signing. 103 # 104 echo "Checking out copy of repository for signed packages" 105 svn checkout \ 106 --trust-server-cert \ 107 --non-interactive \ 108 --depth empty \ 109 --username ${USERNAME} \ 110 --password ${PASSWORD} \ 111 ${SIGNED_REPO_URL} \ 112 ${SIGNED_REPO_COPY} > /dev/null 2>&1 113 fi 94 checkout_signed_repo_copy(){ 95 echo "Checking out copy of repository for signed packages" 96 97 # NOTE: Get empty copy because we do not want to have to check out package 98 # from previous signing. 99 # 100 svn checkout \ 101 --trust-server-cert \ 102 --non-interactive \ 103 --depth empty \ 104 --username ${USERNAME} \ 105 --password ${PASSWORD} \ 106 ${SIGNED_REPO_URL} \ 107 ${SIGNED_REPO_COPY} 114 108 } 115 116 ## Parse options 117 # 118 if [ $# -gt 1 ]; then 119 echo "Can use only one option at a time" 120 exit 1 121 fi 122 123 cleanup=0 124 notarize_only=0 125 skip_tests=0 126 transfer_only=0 127 while [ $# -gt 0 ]; do 128 case $1 in 129 -c|--cleanup) cleanup=1; shift ;; 130 -n|--notarizeonly) notarize_only=1; shift ;; 131 -s|--skiptests) skip_tests=1; shift ;; 132 -t|--transferonly) transfer_only=1; shift ;; 133 *) echo "Unknown parameter passed: $1"; exit 1 ;; 134 esac 135 shift 136 done 137 138 if [ ${cleanup} -eq 1 ]; then 139 # Remove signing lock file from signed package repository so that a new 140 # build can run 141 echo "Removing lock file from repository for signed packages" 109 checkout_unsigned_repo_copy(){ 110 echo "Checking out copy of repository for unsigned packages" 142 111 svn checkout \ 143 112 --trust-server-cert \ … … 145 114 --username ${USERNAME} \ 146 115 --password ${PASSWORD} \ 147 --depth empty \ 148 ${SIGNED_REPO_URL} \ 149 ${SIGNED_REPO_COPY} > /dev/null 2>&1 150 svn up ${SIGNED_REPO_COPY}/${SIGNING_LOCK_FILE} > /dev/null 2>&1 116 ${UNSIGNED_REPO_URL} \ 117 ${UNSIGNED_REPO_COPY} 118 } 119 validate_signed_repo_copy(){ 120 # Validate copy of repository for signed binaries (e.g. 121 # 'Check-out Strategy' was set to 'Use 'svn update' as much as possible'; 122 # initial checkout failed) 123 if [[ ! -d ${SIGNED_REPO_COPY} || ! -d ${SIGNED_REPO_COPY}/.svn ]]; then 124 rm -rf ${SIGNED_REPO_COPY} 125 checkout_signed_repo_copy 126 fi 127 } 128 129 ## Parse options 130 # 131 if [ $# -gt 1 ]; then 132 echo "Can use only one option at a time" 133 exit 1 134 fi 135 136 notarize_only=0 137 skip_tests=0 138 transfer_only=0 139 unlock=0 140 while [ $# -gt 0 ]; do 141 case $1 in 142 -n|--notarizeonly) notarize_only=1; shift ;; 143 -s|--skiptests) skip_tests=1; shift ;; 144 -t|--transferonly) transfer_only=1; shift ;; 145 -u|--unlock) unlock=1; shift ;; 146 *) echo "Unknown parameter passed: $1"; exit 1 ;; 147 esac 148 shift 149 done 150 151 if [ ${unlock} -eq 1 ]; then 152 # Remove signing lock file from signed package repository so that a new 153 # build can run 154 echo "Removing lock file from repository for signed packages" 155 checkout_signed_repo_copy 156 svn up ${SIGNED_REPO_COPY}/${SIGNING_LOCK_FILE} 151 157 svn delete ${SIGNED_REPO_COPY}/${SIGNING_LOCK_FILE} > /dev/null 2>&1 152 158 svn commit \ … … 155 161 --username ${USERNAME} \ 156 162 --password ${PASSWORD} \ 157 --message "DEL: Removing lock file after failed build" ${SIGNED_REPO_COPY} > /dev/null 2>&1158 svn cleanup ${SIGNED_REPO_COPY} > /dev/null 2>&1163 --message "DEL: Removing lock file after failed build" ${SIGNED_REPO_COPY} 164 svn cleanup ${SIGNED_REPO_COPY} 159 165 exit 1 160 166 fi 161 167 162 168 if [ ${transfer_only} -eq 0 ]; then 169 rm -rf ${SIGNED_REPO_COPY} 170 171 checkout_signed_repo_copy 172 173 # If lock file exists, a signing build is still in process by JPL Cybersecurity 174 svn up ${SIGNED_REPO_COPY}/${SIGNING_LOCK_FILE} 175 if [ -f ${SIGNED_REPO_COPY}/${SIGNING_LOCK_FILE} ]; then 176 echo "Previous signing job still in process by JPL Cybersecurity. Please try again later." 177 exit 1 178 fi 179 163 180 if [ ${notarize_only} -eq 0 ]; then 164 181 # Check if MATLAB exists … … 171 188 echo "Cleaning up existing assets" 172 189 cd ${ISSM_DIR} 173 rm -rf ${PKG} ${COMPRESSED_PKG} ${ SIGNED_REPO_COPY} ${UNSIGNED_REPO_COPY}190 rm -rf ${PKG} ${COMPRESSED_PKG} ${UNSIGNED_REPO_COPY} 174 191 mkdir ${PKG} 175 176 # Check out copy of SVN repository for signed packages177 #178 # NOTE: Get empty copy because we do not want to have to check out package from179 # previous signing.180 #181 echo "Checking out copy of repository for signed packages"182 svn checkout \183 --trust-server-cert \184 --non-interactive \185 --username ${USERNAME} \186 --password ${PASSWORD} \187 --depth empty \188 ${SIGNED_REPO_URL} \189 ${SIGNED_REPO_COPY} > /dev/null 2>&1190 191 # If lock file exists, a signing build is still in process by JPL Cybersecurity192 svn up ${SIGNED_REPO_COPY}/${SIGNING_LOCK_FILE} > /dev/null 2>&1193 if [ -f ${SIGNED_REPO_COPY}/${SIGNING_LOCK_FILE} ]; then194 echo "Previous signing job still in process by JPL Cybersecurity. Please try again later."195 exit 1196 fi197 192 198 193 # Add required binaries and libraries to package and modify them where needed … … 297 292 # failed. 298 293 # 299 300 # Make sure copy of repository for signed packages exists 301 validate_signed_repo_copy 294 echo "Notarizing only" 302 295 fi 303 296 … … 311 304 --username ${USERNAME} \ 312 305 --password ${PASSWORD} \ 313 --message "ADD: New lock file" ${SIGNED_REPO_COPY} > /dev/null 2>&1306 --message "ADD: New lock file" ${SIGNED_REPO_COPY} 314 307 315 308 # Save current working copy revision number 316 svn up ${SIGNED_REPO_COPY} > /dev/null 2>&1309 svn up ${SIGNED_REPO_COPY} 317 310 CURRENT_REV=$(svn info --show-item last-changed-revision ${SIGNED_REPO_COPY}) 318 311 319 312 # Check out copy of SVN repository for unsigned packages 320 echo "Checking out copy of repository for unsigned packages" 321 svn checkout \ 322 --trust-server-cert \ 323 --non-interactive \ 324 --username ${USERNAME} \ 325 --password ${PASSWORD} \ 326 ${UNSIGNED_REPO_URL} \ 327 ${UNSIGNED_REPO_COPY} > /dev/null 2>&1 313 checkout_unsigned_repo_copy 328 314 329 315 if [ ${notarize_only} -eq 0 ]; then … … 341 327 --username ${USERNAME} \ 342 328 --password ${PASSWORD} \ 343 --message "CHG: New unsigned package" ${UNSIGNED_REPO_COPY} > /dev/null 2>&1329 --message "CHG: New unsigned package" ${UNSIGNED_REPO_COPY} 344 330 else 345 331 # NOTE: If notarize_only == 1, we commit a dummy file as the signing … … 348 334 # 349 335 echo "Attempting to sign existing package again" 350 touch ${UNSIGNED_REPO_COPY}/${RETRIGGER_SIGNING_FILE}336 echo $(date +'%Y-%m-%d-%H-%M-%S') > ${UNSIGNED_REPO_COPY}/${RETRIGGER_SIGNING_FILE} # Write datetime stamp to file to ensure modification is made 351 337 svn add ${UNSIGNED_REPO_COPY}/${RETRIGGER_SIGNING_FILE} > /dev/null 2>&1 352 338 svn commit \ … … 355 341 --username ${USERNAME} \ 356 342 --password ${PASSWORD} \ 357 --message "ADD: Retriggering signing with same package (previous attempt failed)" ${UNSIGNED_REPO_COPY} > /dev/null 2>&1343 --message "ADD: Retriggering signing with same package (previous attempt failed)" ${UNSIGNED_REPO_COPY} 358 344 fi 359 345 … … 366 352 echo "...in progress still; checking again in ${SIGNING_CHECK_PERIOD} seconds" 367 353 sleep ${SIGNING_CHECK_PERIOD} 368 svn up ${SIGNED_REPO_COPY} > /dev/null 2>&1354 svn up ${SIGNED_REPO_COPY} 369 355 NEW_REV=$(svn info --show-item last-changed-revision ${SIGNED_REPO_COPY}) 370 356 … … 372 358 IN_PROCESS=0 373 359 374 svn up ${SIGNED_REPO_COPY}/${NOTARIZATION_LOGFILE} > /dev/null 2>&1375 svn up ${SIGNED_REPO_COPY}/${COMPRESSED_PKG} > /dev/null 2>&1360 svn up ${SIGNED_REPO_COPY}/${NOTARIZATION_LOGFILE} 361 svn up ${SIGNED_REPO_COPY}/${COMPRESSED_PKG} 376 362 377 363 # No error, so check status -
issm/trunk-jpl/packagers/mac/package-issm-mac-binaries-python.sh
r25874 r25875 4 4 # To be used after running, 5 5 # 6 # ${ISSM_DIR}/jenkins/jenkins.sh ${ISSM_DIR}/jenkins/pine_island-mac-binaries- python6 # ${ISSM_DIR}/jenkins/jenkins.sh ${ISSM_DIR}/jenkins/pine_island-mac-binaries-matlab 7 7 # 8 8 # in the context of a Jenkins project. … … 16 16 # 17 17 # Options: 18 # -c/--cleanup Remove lock file from signed package repository (use if19 # build is aborted to allow for subsequent fresh build)20 18 # -n/--notarizeonly Sign/notarize only (use if signing/notarization fails 21 19 # to skip tests/packaging) … … 25 23 # transfer fails for some reason to skip testing and 26 24 # signing) 25 # -u/--unlock Remove lock file from signed package repository (use if 26 # build is aborted to allow for subsequent fresh build) 27 27 # 28 28 # Debugging: … … 30 30 # Jenkins server. Debugging may be perfomed locally by running, 31 31 # 32 # packagers/mac/sign-issm-mac-binaries- python.sh32 # packagers/mac/sign-issm-mac-binaries-matlab.sh 33 33 # 34 34 # with Apple Developer credentials. … … 91 91 ## Functions 92 92 # 93 validate_signed_repo_copy(){ 94 # Check out copy of repository for signed binaries if it does not exist 95 # (e.g. 'Check-out Strategy' was set to 'Use 'svn update' as much as 96 # possible'; initial checkout failed) 97 if [ ! -d ${SIGNED_REPO_COPY} && ! -d ${SIGNED_REPO_COPY}/.svn ]; then 98 # Check out copy of SVN repository for signed packages 99 # 100 # NOTE: Get empty copy because we do not want to have to check out package from 101 # previous signing. 102 # 103 echo "Checking out copy of repository for signed packages" 104 svn checkout \ 105 --trust-server-cert \ 106 --non-interactive \ 107 --depth empty \ 108 --username ${USERNAME} \ 109 --password ${PASSWORD} \ 110 ${SIGNED_REPO_URL} \ 111 ${SIGNED_REPO_COPY} > /dev/null 2>&1 112 fi 93 checkout_signed_repo_copy(){ 94 echo "Checking out copy of repository for signed packages" 95 96 # NOTE: Get empty copy because we do not want to have to check out package 97 # from previous signing. 98 # 99 svn checkout \ 100 --trust-server-cert \ 101 --non-interactive \ 102 --depth empty \ 103 --username ${USERNAME} \ 104 --password ${PASSWORD} \ 105 ${SIGNED_REPO_URL} \ 106 ${SIGNED_REPO_COPY} 113 107 } 114 115 ## Parse options 116 # 117 if [ $# -gt 1 ]; then 118 echo "Can use only one option at a time" 119 exit 1 120 fi 121 122 cleanup=0 123 notarize_only=0 124 skip_tests=0 125 transfer_only=0 126 while [ $# -gt 0 ]; do 127 case $1 in 128 -c|--cleanup) cleanup=1; shift ;; 129 -n|--notarizeonly) notarize_only=1; shift ;; 130 -s|--skiptests) skip_tests=1; shift ;; 131 -t|--transferonly) transfer_only=1; shift ;; 132 *) echo "Unknown parameter passed: $1"; exit 1 ;; 133 esac 134 shift 135 done 136 137 if [ ${cleanup} -eq 1 ]; then 138 # Remove signing lock file from signed package repository so that a new 139 # build can run 140 echo "Removing lock file from repository for signed packages" 108 checkout_unsigned_repo_copy(){ 109 echo "Checking out copy of repository for unsigned packages" 141 110 svn checkout \ 142 111 --trust-server-cert \ … … 144 113 --username ${USERNAME} \ 145 114 --password ${PASSWORD} \ 146 --depth empty \ 147 ${SIGNED_REPO_URL} \ 148 ${SIGNED_REPO_COPY} > /dev/null 2>&1 149 svn up ${SIGNED_REPO_COPY}/${SIGNING_LOCK_FILE} > /dev/null 2>&1 150 svn delete ${SIGNED_REPO_COPY}/${SIGNING_LOCK_FILE} > /dev/null 2>&1 115 ${UNSIGNED_REPO_URL} \ 116 ${UNSIGNED_REPO_COPY} 117 } 118 validate_signed_repo_copy(){ 119 # Validate copy of repository for signed binaries (e.g. 120 # 'Check-out Strategy' was set to 'Use 'svn update' as much as possible'; 121 # initial checkout failed) 122 if [[ ! -d ${SIGNED_REPO_COPY} || ! -d ${SIGNED_REPO_COPY}/.svn ]]; then 123 rm -rf ${SIGNED_REPO_COPY} 124 checkout_signed_repo_copy 125 fi 126 } 127 128 ## Parse options 129 # 130 if [ $# -gt 1 ]; then 131 echo "Can use only one option at a time" 132 exit 1 133 fi 134 135 notarize_only=0 136 skip_tests=0 137 transfer_only=0 138 unlock=0 139 while [ $# -gt 0 ]; do 140 case $1 in 141 -n|--notarizeonly) notarize_only=1; shift ;; 142 -s|--skiptests) skip_tests=1; shift ;; 143 -t|--transferonly) transfer_only=1; shift ;; 144 -u|--unlock) unlock=1; shift ;; 145 *) echo "Unknown parameter passed: $1"; exit 1 ;; 146 esac 147 shift 148 done 149 150 if [ ${unlock} -eq 1 ]; then 151 # Remove signing lock file from signed package repository so that a new 152 # build can run 153 echo "Removing lock file from repository for signed packages" 154 checkout_signed_repo_copy 155 svn up ${SIGNED_REPO_COPY}/${SIGNING_LOCK_FILE} 156 svn delete ${SIGNED_REPO_COPY}/${SIGNING_LOCK_FILE} 151 157 svn commit \ 152 158 --trust-server-cert \ … … 154 160 --username ${USERNAME} \ 155 161 --password ${PASSWORD} \ 156 --message "DEL: Removing lock file after failed build" ${SIGNED_REPO_COPY} > /dev/null 2>&1157 svn cleanup ${SIGNED_REPO_COPY} > /dev/null 2>&1162 --message "DEL: Removing lock file after failed build" ${SIGNED_REPO_COPY} 163 svn cleanup ${SIGNED_REPO_COPY} 158 164 exit 1 159 165 fi 160 166 161 167 if [ ${transfer_only} -eq 0 ]; then 168 rm -rf ${SIGNED_REPO_COPY} 169 170 checkout_signed_repo_copy 171 172 # If lock file exists, a signing build is still in process by JPL Cybersecurity 173 svn up ${SIGNED_REPO_COPY}/${SIGNING_LOCK_FILE} 174 if [ -f ${SIGNED_REPO_COPY}/${SIGNING_LOCK_FILE} ]; then 175 echo "Previous signing job still in process by JPL Cybersecurity. Please try again later." 176 exit 1 177 fi 178 162 179 if [ ${notarize_only} -eq 0 ]; then 163 180 # Clean up from previous packaging 164 181 echo "Cleaning up existing assets" 165 182 cd ${ISSM_DIR} 166 rm -rf ${PKG} ${COMPRESSED_PKG} ${ SIGNED_REPO_COPY} ${UNSIGNED_REPO_COPY}183 rm -rf ${PKG} ${COMPRESSED_PKG} ${UNSIGNED_REPO_COPY} 167 184 mkdir ${PKG} 168 185 … … 180 197 --depth empty \ 181 198 ${SIGNED_REPO_URL} \ 182 ${SIGNED_REPO_COPY} > /dev/null 2>&1199 ${SIGNED_REPO_COPY} 183 200 184 201 # If lock file exists, a signing build is still in process by JPL Cybersecurity 185 svn up ${SIGNED_REPO_COPY}/${SIGNING_LOCK_FILE} > /dev/null 2>&1202 svn up ${SIGNED_REPO_COPY}/${SIGNING_LOCK_FILE} 186 203 if [ -f ${SIGNED_REPO_COPY}/${SIGNING_LOCK_FILE} ]; then 187 204 echo "Previous signing job still in process by JPL Cybersecurity. Please try again later." … … 298 315 # failed. 299 316 # 300 301 # Make sure copy of repository for signed packages exists 302 validate_signed_repo_copy 317 echo "Notarizing only" 303 318 fi 304 319 … … 306 321 echo "Committing lock file to repository for signed packages" 307 322 touch ${SIGNED_REPO_COPY}/${SIGNING_LOCK_FILE} 308 svn add ${SIGNED_REPO_COPY}/${SIGNING_LOCK_FILE} > /dev/null 2>&1323 svn add ${SIGNED_REPO_COPY}/${SIGNING_LOCK_FILE} 309 324 svn commit \ 310 325 --trust-server-cert \ … … 312 327 --username ${USERNAME} \ 313 328 --password ${PASSWORD} \ 314 --message "ADD: New lock file" ${SIGNED_REPO_COPY} > /dev/null 2>&1329 --message "ADD: New lock file" ${SIGNED_REPO_COPY} 315 330 316 331 # Save current working copy revision number 317 svn up ${SIGNED_REPO_COPY} > /dev/null 2>&1332 svn up ${SIGNED_REPO_COPY} 318 333 CURRENT_REV=$(svn info --show-item last-changed-revision ${SIGNED_REPO_COPY}) 319 334 320 335 # Check out copy of SVN repository for unsigned packages 321 echo "Checking out copy of repository for unsigned packages" 322 svn checkout \ 323 --trust-server-cert \ 324 --non-interactive \ 325 --username ${USERNAME} \ 326 --password ${PASSWORD} \ 327 ${UNSIGNED_REPO_URL} \ 328 ${UNSIGNED_REPO_COPY} > /dev/null 2>&1 336 checkout_unsigned_repo_copy 329 337 330 338 if [ ${notarize_only} -eq 0 ]; then … … 336 344 echo "Committing package to repository for unsigned packages" 337 345 cp ${COMPRESSED_PKG} ${UNSIGNED_REPO_COPY} 338 svn add ${UNSIGNED_REPO_COPY}/${COMPRESSED_PKG} > /dev/null 2>&1346 svn add ${UNSIGNED_REPO_COPY}/${COMPRESSED_PKG} 339 347 svn commit \ 340 348 --trust-server-cert \ … … 342 350 --username ${USERNAME} \ 343 351 --password ${PASSWORD} \ 344 --message "CHG: New unsigned package" ${UNSIGNED_REPO_COPY} > /dev/null 2>&1352 --message "CHG: New unsigned package" ${UNSIGNED_REPO_COPY} 345 353 else 346 354 # NOTE: If notarize_only == 1, we commit a dummy file as the signing … … 349 357 # 350 358 echo "Attempting to sign existing package again" 351 touch ${UNSIGNED_REPO_COPY}/${RETRIGGER_SIGNING_FILE}352 svn add ${UNSIGNED_REPO_COPY}/${RETRIGGER_SIGNING_FILE} > /dev/null 2>&1359 echo $(date +'%Y-%m-%d-%H-%M-%S') > ${UNSIGNED_REPO_COPY}/${RETRIGGER_SIGNING_FILE} # Write datetime stamp to file to ensure modification is made 360 svn add ${UNSIGNED_REPO_COPY}/${RETRIGGER_SIGNING_FILE} 353 361 svn commit \ 354 362 --trust-server-cert \ … … 356 364 --username ${USERNAME} \ 357 365 --password ${PASSWORD} \ 358 --message "ADD: Retriggering signing with same package (previous attempt failed)" ${UNSIGNED_REPO_COPY} > /dev/null 2>&1366 --message "ADD: Retriggering signing with same package (previous attempt failed)" ${UNSIGNED_REPO_COPY} 359 367 fi 360 368 … … 367 375 echo "...in progress still; checking again in ${SIGNING_CHECK_PERIOD} seconds" 368 376 sleep ${SIGNING_CHECK_PERIOD} 369 svn up ${SIGNED_REPO_COPY} > /dev/null 2>&1377 svn up ${SIGNED_REPO_COPY} 370 378 NEW_REV=$(svn info --show-item last-changed-revision ${SIGNED_REPO_COPY}) 371 379 … … 373 381 IN_PROCESS=0 374 382 375 svn up ${SIGNED_REPO_COPY}/${NOTARIZATION_LOGFILE} > /dev/null 2>&1376 svn up ${SIGNED_REPO_COPY}/${COMPRESSED_PKG} > /dev/null 2>&1383 svn up ${SIGNED_REPO_COPY}/${NOTARIZATION_LOGFILE} 384 svn up ${SIGNED_REPO_COPY}/${COMPRESSED_PKG} 377 385 378 386 # No error, so check status -
issm/trunk-jpl/packagers/mac/sign-issm-mac-binaries-matlab.sh
r25874 r25875 42 42 # 43 43 # NOTE: 44 # - Assumes that 'issm-binaries-user' and 'issm-binaries-pass'are set up in44 # - Assumes that "ISSM_BINARIES_USER" and "ISSM_BINARIES_PASS" are set up in 45 45 # the 'Bindings' section under a 'Username and password (separated)' binding 46 46 # (requires 'Credentials Binding Plugin'). … … 86 86 PASSWORD=${ISSM_BINARIES_PASS} 87 87 PKG="ISSM-macOS-MATLAB" 88 PRIMARY_BUNDLE_ID="**********.issm.matlab" # Should be "gov.nasa.jpl.issm.matlab" 89 RETRIGGER_SIGNING_FILE="retrigger.txt" 88 PRIMARY_BUNDLE_ID="gov.nasa.jpl.issm.matlab" 90 89 SIGNED_REPO_COPY="./signed" 91 90 SIGNED_REPO_URL="https://issm.ess.uci.edu/svn/issm-binaries/mac/matlab/signed" … … 99 98 EXE_ENTITLEMENTS_PLIST="${PKG}/bin/entitlements.plist" 100 99 101 # Clean up from previous packaging (not necessary for single builds on Jenkins,102 # but useful when testing packaging locally)103 echo "Cleaning up existing assets"104 rm -rf ${PKG} ${COMPRESSED_PKG} ${NOTARIZATION_LOGFILE_PATH}/${NOTARIZATION_LOGFILE} ${SIGNED_REPO_COPY} ${UNSIGNED_REPO_COPY}105 mkdir ${PKG}106 107 100 # NOTE: Uncomment the following for local testing (Jenkins checks out copy of 108 101 # repository for unsigned packages to working directory) 109 102 # 110 # Check out copy of repository for unsigned packages 103 104 # # Clean up from previous packaging (not necessary for single builds on Jenkins, 105 # # but useful when testing packaging locally) 106 # echo "Cleaning up existing assets" 107 # rm -rf ${COMPRESSED_PKG} ${NOTARIZATION_LOGFILE_PATH}/${NOTARIZATION_LOGFILE} ${UNSIGNED_REPO_COPY} 108 109 # # Check out copy of repository for unsigned packages 111 110 # echo "Checking out copy of respository for unsigned packages" 112 111 # svn checkout \ … … 116 115 # --password ${PASSWORD} \ 117 116 # ${UNSIGNED_REPO_URL} \ 118 # ${UNSIGNED_REPO_COPY} > /dev/null 2>&1 117 # ${UNSIGNED_REPO_COPY} 118 119 rm -rf ${PKG} ${SIGNED_REPO_COPY} 119 120 120 121 # Extract package contents … … 246 247 fi 247 248 248 # Remove dummy file for retriggering signing/notarization (if it exists)249 svn delete ${UNSIGNED_REPO_COPY}/${RETRIGGER_SIGNING_FILE} > /dev/null 2>&1250 svn commit \251 --trust-server-cert \252 --non-interactive \253 --username ${USERNAME} \254 --password ${PASSWORD} \255 --message "DEL: Removing dummy file for retriggering signing of same package" ${UNSIGNED_REPO_COPY} > /dev/null 2>&1256 257 249 # Check out copy of repository for signed packages 258 250 echo "Checking out copy of respository for signed packages" … … 263 255 --password ${PASSWORD} \ 264 256 ${SIGNED_REPO_URL} \ 265 ${SIGNED_REPO_COPY} > /dev/null 2>&1257 ${SIGNED_REPO_COPY} 266 258 267 259 # Copy notarization file to repository for signed packages … … 284 276 --username ${USERNAME} \ 285 277 --password ${PASSWORD} \ 286 --message "CHG: New signed package (success)" ${SIGNED_REPO_COPY} > /dev/null 2>&1278 --message "CHG: New signed package (success)" ${SIGNED_REPO_COPY} 287 279 else 288 280 # Commit changes … … 293 285 --username ${USERNAME} \ 294 286 --password ${PASSWORD} \ 295 --message "CHG: New signed package (failure)" ${SIGNED_REPO_COPY} > /dev/null 2>&1287 --message "CHG: New signed package (failure)" ${SIGNED_REPO_COPY} 296 288 297 289 exit 1 -
issm/trunk-jpl/packagers/mac/sign-issm-mac-binaries-python.sh
r25874 r25875 42 42 # 43 43 # NOTE: 44 # - Assumes that 'issm-binaries-user' and 'issm-binaries-pass'are set up in44 # - Assumes that "ISSM_BINARIES_USER" and "ISSM_BINARIES_PASS" are set up in 45 45 # the 'Bindings' section under a 'Username and password (separated)' binding 46 46 # (requires 'Credentials Binding Plugin'). … … 86 86 PASSWORD=${ISSM_BINARIES_PASS} 87 87 PKG="ISSM-macOS-Python" 88 PRIMARY_BUNDLE_ID="**********.issm.python" # Should be "gov.nasa.jpl.issm.python" 89 RETRIGGER_SIGNING_FILE="retrigger.txt" 88 PRIMARY_BUNDLE_ID="gov.nasa.jpl.issm.python" 90 89 SIGNED_REPO_COPY="./signed" 91 90 SIGNED_REPO_URL="https://issm.ess.uci.edu/svn/issm-binaries/mac/python/signed" … … 99 98 EXE_ENTITLEMENTS_PLIST="${PKG}/bin/entitlements.plist" 100 99 101 # Clean up from previous packaging (not necessary for single builds on Jenkins,102 # but useful when testing packaging locally)103 echo "Cleaning up existing assets"104 rm -rf ${PKG} ${COMPRESSED_PKG} ${NOTARIZATION_LOGFILE_PATH}/${NOTARIZATION_LOGFILE} ${SIGNED_REPO_COPY} ${UNSIGNED_REPO_COPY}105 mkdir ${PKG}106 107 100 # NOTE: Uncomment the following for local testing (Jenkins checks out copy of 108 101 # repository for unsigned packages to working directory) 109 102 # 110 # Check out copy of repository for unsigned packages 103 104 # # Clean up from previous packaging (not necessary for single builds on Jenkins, 105 # # but useful when testing packaging locally) 106 # echo "Cleaning up existing assets" 107 # rm -rf ${COMPRESSED_PKG} ${NOTARIZATION_LOGFILE_PATH}/${NOTARIZATION_LOGFILE} ${UNSIGNED_REPO_COPY} 108 109 # # Check out copy of repository for unsigned packages 111 110 # echo "Checking out copy of respository for unsigned packages" 112 111 # svn checkout \ … … 116 115 # --password ${PASSWORD} \ 117 116 # ${UNSIGNED_REPO_URL} \ 118 # ${UNSIGNED_REPO_COPY} > /dev/null 2>&1 117 # ${UNSIGNED_REPO_COPY} 118 119 rm -rf ${PKG} ${SIGNED_REPO_COPY} 120 119 121 120 122 # Extract package contents … … 255 257 fi 256 258 257 # Remove dummy file for retriggering signing/notarization (if it exists)258 svn delete ${UNSIGNED_REPO_COPY}/${RETRIGGER_SIGNING_FILE} > /dev/null 2>&1259 svn commit \260 --trust-server-cert \261 --non-interactive \262 --username ${USERNAME} \263 --password ${PASSWORD} \264 --message "DEL: Removing dummy file for retriggering signing of same package" ${UNSIGNED_REPO_COPY} > /dev/null 2>&1265 266 259 # Check out copy of repository for signed packages 267 260 echo "Checking out copy of respository for signed packages" … … 272 265 --password ${PASSWORD} \ 273 266 ${SIGNED_REPO_URL} \ 274 ${SIGNED_REPO_COPY} > /dev/null 2>&1267 ${SIGNED_REPO_COPY} 275 268 276 269 # Copy notarization file to repository for signed packages … … 279 272 280 273 # Remove lock file from repository for signed packages 281 svn delete ${SIGNED_REPO_COPY}/${SIGNING_LOCK_FILE} > /dev/null 2>&1274 svn delete ${SIGNED_REPO_COPY}/${SIGNING_LOCK_FILE} 282 275 283 276 if [ ${SUCCESS} -eq 1 ]; then … … 293 286 --username ${USERNAME} \ 294 287 --password ${PASSWORD} \ 295 --message "CHG: New signed package (success)" ${SIGNED_REPO_COPY} > /dev/null 2>&1288 --message "CHG: New signed package (success)" ${SIGNED_REPO_COPY} 296 289 else 297 290 # Commit changes … … 302 295 --username ${USERNAME} \ 303 296 --password ${PASSWORD} \ 304 --message "CHG: New signed package (failure)" ${SIGNED_REPO_COPY} > /dev/null 2>&1297 --message "CHG: New signed package (failure)" ${SIGNED_REPO_COPY} 305 298 306 299 exit 1
Note:
See TracChangeset
for help on using the changeset viewer.