This is an automated email from the git hooks/post-receive script.
richard pushed a commit to branch main in repository tor-browser-spec.
The following commit(s) were added to refs/heads/main by this push: new ecdd135 Bug 40034: Add Android signing to processes/ReleaseProcess ecdd135 is described below
commit ecdd135421dd57dd1f253c1ebcbcf1bd223b63f1 Author: Nicolas Vigier boklm@torproject.org AuthorDate: Wed Jul 13 14:14:44 2022 +0200
Bug 40034: Add Android signing to processes/ReleaseProcess --- processes/ReleaseProcess | 32 ++++++++++++++++++++++++++++++++ 1 file changed, 32 insertions(+)
diff --git a/processes/ReleaseProcess b/processes/ReleaseProcess index 82c7bfa..e97b2f2 100644 --- a/processes/ReleaseProcess +++ b/processes/ReleaseProcess @@ -61,6 +61,38 @@ # For stable releases put tails-dev@boum.org into Cc.
+####################### +### Android signing ### +####################### + +#. The Android signing is done separately from the desktop signing. To +# do the Android signing you'll need to boot from a Tails usb stick, +# with persistent storage enabled. + +#. Install the openjdk-11-jdk-headless package + apt install openjdk-11-jdk-headless + +#. Make sure you have the android keys, for example in the +# ~/Persistent/android-keys directory. This directory should include +# the tba_alpha.p12 and tba_release.p12 files. + +#. Clone tor-browser-build, and checkout the tag for the release + git tag -v tbb-$TORBROWSER_VERSION-buildN + git checkout tbb-$TORBROWSER_VERSION-buildN + +#. Update set-config.tbb-version and set-config.android-signing + cd tools/signing + vim set-config.tbb-version + vim set-config.android-signing + +#. Run the android-signing script. This script will download the +# unsigned apks from the `pkgstage` machine (where `do-all-signing` +# is run), signed them, and upload back the signed apks to the +# `pkgstage` machine. It should be done before the hash_signed_bundles.sh +# step. + ./android-signing + + ########################## ### Signing and upload ### ##########################