[tbb-commits] [tor-browser-spec] branch main updated: Bug 40034: Add Android signing to processes/ReleaseProcess

gitolite role git at cupani.torproject.org
Fri Aug 26 18:48:43 UTC 2022


This is an automated email from the git hooks/post-receive script.

richard pushed a commit to branch main
in repository tor-browser-spec.

The following commit(s) were added to refs/heads/main by this push:
     new ecdd135  Bug 40034: Add Android signing to processes/ReleaseProcess
ecdd135 is described below

commit ecdd135421dd57dd1f253c1ebcbcf1bd223b63f1
Author: Nicolas Vigier <boklm at torproject.org>
AuthorDate: Wed Jul 13 14:14:44 2022 +0200

    Bug 40034: Add Android signing to processes/ReleaseProcess
---
 processes/ReleaseProcess | 32 ++++++++++++++++++++++++++++++++
 1 file changed, 32 insertions(+)

diff --git a/processes/ReleaseProcess b/processes/ReleaseProcess
index 82c7bfa..e97b2f2 100644
--- a/processes/ReleaseProcess
+++ b/processes/ReleaseProcess
@@ -61,6 +61,38 @@
    # For stable releases put tails-dev at boum.org into Cc.
 
 
+#######################
+### Android signing ###
+#######################
+
+#. The Android signing is done separately from the desktop signing. To
+#  do the Android signing you'll need to boot from a Tails usb stick,
+#  with persistent storage enabled.
+
+#. Install the openjdk-11-jdk-headless package
+   apt install openjdk-11-jdk-headless
+
+#. Make sure you have the android keys, for example in the
+#  ~/Persistent/android-keys directory. This directory should include
+#  the tba_alpha.p12 and tba_release.p12 files.
+
+#. Clone tor-browser-build, and checkout the tag for the release
+   git tag -v tbb-$TORBROWSER_VERSION-buildN
+   git checkout tbb-$TORBROWSER_VERSION-buildN
+
+#. Update set-config.tbb-version and set-config.android-signing
+   cd tools/signing
+   vim set-config.tbb-version
+   vim set-config.android-signing
+
+#. Run the android-signing script. This script will download the
+#  unsigned apks from the `pkgstage` machine (where `do-all-signing`
+#  is run), signed them, and upload back the signed apks to the
+#  `pkgstage` machine. It should be done before the hash_signed_bundles.sh
+#  step.
+   ./android-signing
+
+
 ##########################
 ### Signing and upload ###
 ##########################

-- 
To stop receiving notification emails like this one, please contact
the administrator of this repository.


More information about the tbb-commits mailing list