mirror of
https://github.com/status-im/status-desktop.git
synced 2025-02-06 03:33:32 +00:00
Jakub Sokołowski
2df6def7f9
Adds `scripts/sign-linux-file.sh` which expectes the following variables set: * `LINUX_GPG_PRIVATE_KEY_FILE` - Path to the GPG export of private key. * `LINUX_GPG_PRIVATE_KEY_PASS` - Password necessary to use the private key. Given a file it creates a file with a `.asc` suffix containing the signature: ``` > wget -q https://status-im-prs.ams3.digitaloceanspaces.com/StatusIm-210809-104514-156806-pr.tar.gz > tar xvf StatusIm-210809-104514-156806-pr.tar.gz StatusIm-210809-104514-156806-pr.AppImage StatusIm-210809-104514-156806-pr.AppImage.asc > gpg --verify StatusIm-210809-104514-156806-pr.AppImage.asc gpg: assuming signed data in 'StatusIm-210809-104514-156806-pr.AppImage' gpg: Signature made Mon 09 Aug 2021 12:54:49 PM CEST using RSA key ID E20B4DFD gpg: Good signature from "Status.im Devel Signing (GPG key for signing Status.im development builds.) <devel@status.im>" [ultimate] Primary key fingerprint: BBF0 5F92 536B ED19 30A9 FD44 009F B3BF E20B 4DFD ``` Issue: https://github.com/status-im/infra-ci/issues/25 Requires: https://github.com/status-im/status-jenkins-lib/pull/32 Signed-off-by: Jakub Sokołowski <jakub@status.im>
86 lines
2.0 KiB
Plaintext
86 lines
2.0 KiB
Plaintext
library 'status-jenkins-lib@ci-linux-signing'
|
|
|
|
pipeline {
|
|
agent { label 'windows' }
|
|
|
|
parameters {
|
|
string(
|
|
name: 'BUILD_TYPE',
|
|
description: 'Specify build type. Values: pr / nightly / release',
|
|
defaultValue: 'pr',
|
|
)
|
|
}
|
|
|
|
options {
|
|
timestamps()
|
|
/* Prevent Jenkins jobs from running forever */
|
|
timeout(time: 25, unit: 'MINUTES')
|
|
/* manage how many builds we keep */
|
|
buildDiscarder(logRotator(
|
|
numToKeepStr: '10',
|
|
daysToKeepStr: '30',
|
|
artifactNumToKeepStr: '3',
|
|
))
|
|
}
|
|
|
|
environment {
|
|
TARGET = 'windows'
|
|
/* Improve make performance */
|
|
MAKEFLAGS = '-j4'
|
|
/* Disable colors in Nim compiler logs */
|
|
NIMFLAGS = '--colors:off'
|
|
/* Control output the filename */
|
|
STATUS_CLIENT_EXE = "pkg/${utils.pkgFilename('exe')}"
|
|
/* RFC 3161 timestamping URL for DigiCert */
|
|
WINDOWS_CODESIGN_TIMESTAMP_URL = 'http://timestamp.digicert.com'
|
|
}
|
|
|
|
stages {
|
|
stage('Deps') {
|
|
steps {
|
|
/* trigger fetching of git submodules */
|
|
sh 'make check-pkg-target-windows'
|
|
/* avoid re-compiling Nim by using cache */
|
|
cache(maxCacheSize: 250, caches: [[
|
|
$class: 'ArbitraryFileCache',
|
|
includes: '**/*',
|
|
path: 'vendor/nimbus-build-system/vendor/Nim/bin'
|
|
]]) {
|
|
sh 'make deps'
|
|
}
|
|
}
|
|
}
|
|
|
|
stage('status-go') {
|
|
steps { sh 'make status-go' }
|
|
}
|
|
|
|
stage('Package') {
|
|
steps { script {
|
|
windows.bundle(env.STATUS_CLIENT_EXE)
|
|
} }
|
|
}
|
|
|
|
stage('Parallel Upload') {
|
|
parallel {
|
|
stage('Upload') {
|
|
steps { script {
|
|
env.PKG_URL = s3.uploadArtifact(env.STATUS_CLIENT_EXE)
|
|
jenkins.setBuildDesc(Exe: env.PKG_URL)
|
|
} }
|
|
}
|
|
stage('Archive') {
|
|
steps { script {
|
|
archiveArtifacts(env.STATUS_CLIENT_EXE)
|
|
} }
|
|
}
|
|
}
|
|
}
|
|
}
|
|
post {
|
|
success { script { github.notifyPR(true) } }
|
|
failure { script { github.notifyPR(false) } }
|
|
always { cleanWs() }
|
|
}
|
|
}
|