From 108579fe65f877b8ba7ac5a45a61a275ce5d50a3 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Bj=C3=B8rn=20Olav?= Date: Sat, 9 Nov 2024 08:53:11 +0100 Subject: [PATCH] ci: attempt to fix windows builds --- .github/workflows/build-sidesail.yml | 171 +++++++++++++++++++++++++++ clients/scripts/build-windows.sh | 6 +- 2 files changed, 174 insertions(+), 3 deletions(-) create mode 100644 .github/workflows/build-sidesail.yml diff --git a/.github/workflows/build-sidesail.yml b/.github/workflows/build-sidesail.yml new file mode 100644 index 00000000..c04df36c --- /dev/null +++ b/.github/workflows/build-sidesail.yml @@ -0,0 +1,171 @@ +name: Dart + +on: + push: + branches: ["master"] + pull_request: + branches: ["master"] + +defaults: + run: + working-directory: clients/sidesail + +jobs: + format-lint-test: + runs-on: ubuntu-latest + + steps: + - uses: actions/checkout@v4 + - uses: subosito/flutter-action@v2 + + # Note: This workflow uses the latest stable version of the Dart SDK. + # You can specify other versions if desired, see documentation here: + # https://github.com/dart-lang/setup-dart/blob/main/README.md + - uses: dart-lang/setup-dart@v1 + + - name: Install dependencies + run: flutter pub get + + # Uncomment this step to verify the use of 'dart format' on each commit. + - name: Verify formatting + run: dart format --output=none --set-exit-if-changed . -l 120 + + # Consider passing '--fatal-infos' for slightly stricter analysis. + - name: Analyze project source + run: dart analyze + + # Your project will need to have tests in test/ and a dependency on + # package:test for this step to succeed. Note that Flutter projects will + # want to change this to 'flutter test'. + - name: Run tests + run: flutter test + + build: + strategy: + fail-fast: false + matrix: + os: [ubuntu-latest, macos-latest, windows-latest] + chain: [testchain, ethereum, zcash] + exclude: + - os: windows-latest + chain: zcash + + name: Build binaries + runs-on: ${{ matrix.os }} + defaults: + run: + shell: bash + working-directory: clients/sidesail # must be specified here as well, otherwise overwrites top most + + steps: + - uses: actions/checkout@v4 + - uses: subosito/flutter-action@v2 + + # Note: This workflow uses the latest stable version of the Dart SDK. + # You can specify other versions if desired, see documentation here: + # https://github.com/dart-lang/setup-dart/blob/main/README.md + - uses: dart-lang/setup-dart@v1 + + - name: Install dependencies + run: flutter pub get + + # standard macOS sed has subtle differences from gnu + - name: Install GNU sed on macOS + if: runner.os == 'macOS' + run: | + brew install gnu-sed + echo "$(brew --prefix)/opt/gnu-sed/libexec/gnubin" >> $GITHUB_PATH + + # https://docs.flutter.dev/get-started/install/linux/desktop + # prettier-ignore + - run: sudo apt-get install clang cmake git ninja-build pkg-config libgtk-3-dev liblzma-dev libstdc++-12-dev + if: runner.os == 'Linux' + + - name: Setup macOS app signing + if: runner.os == 'macOS' + run: | + # import certificate into the keychain + echo "${{ secrets.MACOS_CERTIFICATE }}" | base64 --decode > certificate.p12 + KEYCHAIN_PASSWORD=$(uuidgen) + + echo "Creating keychain" + security create-keychain -p "$KEYCHAIN_PASSWORD" build.keychain + + echo "Setting default keychain" + security default-keychain -s build.keychain + + echo "Unlocking keychain" + security unlock-keychain -p "$KEYCHAIN_PASSWORD" build.keychain + + echo "Importing certificate into keychain" + security import ./certificate.p12 -k ~/Library/Keychains/build.keychain -P ${{ secrets.MACOS_CERTIFICATE_PASSWORD }} -T /usr/bin/codesign + + echo "Setting key partition list" + security set-key-partition-list -S apple-tool:,apple: -s -k "$KEYCHAIN_PASSWORD" ~/Library/Keychains/build.keychain + + # Find the Common Name of the certificate we just imported + security find-certificate -a -p build.keychain > certificate.pem + cert_subject=$(openssl x509 -in certificate.pem -noout -subject) + echo Certificate subject: "'$cert_subject'" + + cn_part=$(grep -o 'CN = "[^"]*"' <<< "$cert_subject") + echo CN part: "'$cn_part'" + + cn_value=$(sed 's/CN = "\(.*\)"/\1/' <<< "$cn_part") + echo CN value: "'$cn_value'" + + echo "Determined code sign identity: '$cn_value'" + + echo "CODESIGN_IDENTITY=$cn_value" >> $GITHUB_ENV + + echo "Creating notarization API key file" + echo ${{ secrets.GODOT_MACOS_NOTARIZATION_API_KEY }} | base64 --decode > notarization_api_key.p8 + + - name: Build app + run: | + # Everything after first line is only relevant for macOS + ./scripts/build-app.sh ${{ runner.os }} ${{ matrix.chain }} "none" \ + "$CODESIGN_IDENTITY" $PWD/notarization_api_key.p8 \ + ${{ secrets.GODOT_MACOS_NOTARIZATION_API_KEY_ID }} \ + ${{ secrets.GODOT_MACOS_NOTARIZATION_API_UUID }} + + - uses: actions/upload-artifact@v4 + with: + name: sidesail-binaries-${{ runner.os }}-${{ matrix.chain }} + if-no-files-found: error + path: clients/sidesail/release/* + + upload-artifacts-to-releases-drivechain-info: + name: Upload artifacts to releases.drivechain.info + runs-on: ubuntu-latest + needs: [build] + # avoid uploading on PRs + if: github.event_name == 'push' && github.ref == 'refs/heads/master' && github.repository_owner == 'LayerTwo-Labs' + steps: + - name: Download artifacts + uses: actions/download-artifact@v4 + + - name: Zip artifacts + working-directory: . # we set a default above, with a directory that doesn't exist for this job + # The files here are already zips. No point in zipping again! + run: | + mv sidesail-binaries-macOS-testchain/testsail-osx64.zip L2-S0-TestSail-latest-x86_64-apple-darwin.zip + mv sidesail-binaries-Windows-testchain/testsail-win64.zip L2-S0-TestSail-latest-x86_64-w64-mingw32.zip + mv sidesail-binaries-Linux-testchain/testsail-x86_64-linux-gnu.zip L2-S0-TestSail-latest-x86_64-unknown-linux-gnu.zip + + mv sidesail-binaries-macOS-zcash/zsail-osx64.zip L2-S5-ZSail-latest-x86_64-apple-darwin.zip + mv sidesail-binaries-Linux-zcash/zsail-x86_64-linux-gnu.zip L2-S5-ZSail-latest-x86_64-unknown-linux-gnu.zip + + mv sidesail-binaries-macOS-ethereum/ethsail-osx64.zip L2-S6-EthSail-latest-x86_64-apple-darwin.zip + mv sidesail-binaries-Windows-ethereum/ethsail-win64.zip L2-S6-EthSail-latest-x86_64-w64-mingw32.zip + mv sidesail-binaries-Linux-ethereum/ethsail-x86_64-linux-gnu.zip L2-S6-EthSail-latest-x86_64-unknown-linux-gnu.zip + + - name: Upload artifacts to releases.drivechain.info + uses: cross-the-world/ssh-scp-ssh-pipelines@latest + with: + host: 45.33.96.47 + user: root + pass: ${{ secrets.RELEASES_SERVER_PW }} + port: 22 + scp: | + 'L2-S*.zip' => '/var/www/html/' \ No newline at end of file diff --git a/clients/scripts/build-windows.sh b/clients/scripts/build-windows.sh index c37dba1b..e21807c5 100644 --- a/clients/scripts/build-windows.sh +++ b/clients/scripts/build-windows.sh @@ -21,11 +21,11 @@ cd $client_dir # nice with the Flutter caches. Do a proper clean # before building. clean_cmd="flutter clean" -build_cmd="flutter build --verbose windows --dart-define-from-file=build-vars.env" +build_cmd="flutter build windows --dart-define-from-file=build-vars.env" -powershell.exe -Command "& {$clean_cmd; $build_cmd; exit \$LASTEXITCODE}" +powershell.exe -Command "& {$clean_cmd; $build_cmd; exit}" zip_name=$lower_app_name-win64.zip mkdir -p release -powershell.exe -Command "Compress-Archive -Force build\windows\x64\x64\Release\* release/$zip_name" \ No newline at end of file +powershell.exe -Command "Compress-Archive -Force build\windows\x64\runner\Release\* release/$zip_name" \ No newline at end of file