Reproducible Build
This commit is contained in:
parent
f1ef75a1dd
commit
d594bb5685
@ -1,6 +1,7 @@
|
|||||||
FROM gradle:5.6.4-jdk8
|
FROM gradle:6.1.1-jdk8
|
||||||
|
|
||||||
ENV ANDROID_SDK_URL https://dl.google.com/android/repository/sdk-tools-linux-3859397.zip
|
ENV ANDROID_SDK_URL https://dl.google.com/android/repository/sdk-tools-linux-3859397.zip
|
||||||
|
ENV ANDROID_SDK_CHECKSUM 444e22ce8ca0f67353bda4b85175ed3731cae3ffa695ca18119cbacef1c1bea0
|
||||||
ENV ANDROID_BUILD_TOOLS_VERSION 29.0.3
|
ENV ANDROID_BUILD_TOOLS_VERSION 29.0.3
|
||||||
ENV ANDROID_HOME /usr/local/android-sdk-linux
|
ENV ANDROID_HOME /usr/local/android-sdk-linux
|
||||||
ENV ANDROID_VERSION 29
|
ENV ANDROID_VERSION 29
|
||||||
@ -9,6 +10,7 @@ ENV PATH ${PATH}:${ANDROID_HOME}/tools:${ANDROID_HOME}/platform-tools
|
|||||||
RUN mkdir "$ANDROID_HOME" .android && \
|
RUN mkdir "$ANDROID_HOME" .android && \
|
||||||
cd "$ANDROID_HOME" && \
|
cd "$ANDROID_HOME" && \
|
||||||
curl -o sdk.zip $ANDROID_SDK_URL && \
|
curl -o sdk.zip $ANDROID_SDK_URL && \
|
||||||
|
echo "${ANDROID_SDK_CHECKSUM} sdk.zip" | sha256sum -c - && \
|
||||||
unzip sdk.zip && \
|
unzip sdk.zip && \
|
||||||
rm sdk.zip
|
rm sdk.zip
|
||||||
|
|
||||||
|
@ -1,6 +1,6 @@
|
|||||||
# Reproducible Builds
|
# Reproducible Builds
|
||||||
|
|
||||||
Note: reproducible builds work starting version 1.0.44
|
Note: reproducible builds work starting version 1.0.45
|
||||||
|
|
||||||
## Install Docker
|
## Install Docker
|
||||||
|
|
||||||
@ -34,8 +34,8 @@ git checkout v1.0.44
|
|||||||
```shell
|
```shell
|
||||||
cd ~/peertube-android
|
cd ~/peertube-android
|
||||||
docker build -t thorium-builder .
|
docker build -t thorium-builder .
|
||||||
docker run --rm -v ~/peertube-android:/home/peertube-android -w /home/peertube-android thorium-builder gradle assembleProdRelease -PkeystorePassword=securePassword -PkeyAliasPassword=securePassword -PkeystoreFile=build.keystore -PbuildTimestamp=1593942384524
|
docker run --rm -v ~/Private/peertube:/home/peertube -w /home/peertube thorium-builder gradle assembleRelease -PkeystorePassword=securePassword -PkeyAliasPassword=securePassword -PkeystoreFile=build.keystore -PbuildTimestamp=1593973044091
|
||||||
cp app/build/outputs/apk/prod/release/app-prod-release.apk thorium-built.apk
|
cp app/build/outputs/apk/release/app-release-unsigned.apk thorium-built.apk
|
||||||
```
|
```
|
||||||
|
|
||||||
## Extract the Play Store APK from your phone
|
## Extract the Play Store APK from your phone
|
||||||
@ -46,7 +46,8 @@ cp app/build/outputs/apk/prod/release/app-prod-release.apk thorium-built.apk
|
|||||||
|
|
||||||
```shell
|
```shell
|
||||||
cd ~/peertube-android
|
cd ~/peertube-android
|
||||||
adb pull `adb shell pm path net.schueller.peertube | cut -d':' -f2` thorium-store.apk
|
adb shell pm path net.schueller.peertube
|
||||||
|
adb pull /data/app/net.schueller.peertube-mCeISw_AujlMBHyPfVhdSg==/base.apk thorium-store.apk
|
||||||
```
|
```
|
||||||
|
|
||||||
## Compare the two files
|
## Compare the two files
|
||||||
@ -56,6 +57,6 @@ adb pull `adb shell pm path net.schueller.peertube | cut -d':' -f2` thorium-stor
|
|||||||
|
|
||||||
```shell
|
```shell
|
||||||
cd ~/peertube-android
|
cd ~/peertube-android
|
||||||
python apkdiff.py thorium-built.apk thorium-store.apk
|
./apkdiff.py thorium-built.apk thorium-store.apk
|
||||||
```
|
```
|
||||||
|
|
||||||
|
66
apkdiff.py
Executable file
66
apkdiff.py
Executable file
@ -0,0 +1,66 @@
|
|||||||
|
#!/usr/bin/env python
|
||||||
|
# Taken from https://github.com/DrKLO/Telegram/blob/master/apkdiff.py on June 4th, 2020
|
||||||
|
|
||||||
|
import sys
|
||||||
|
from zipfile import ZipFile
|
||||||
|
|
||||||
|
def compareFiles(first, second):
|
||||||
|
while True:
|
||||||
|
firstBytes = first.read(4096);
|
||||||
|
secondBytes = second.read(4096);
|
||||||
|
if firstBytes != secondBytes:
|
||||||
|
return False
|
||||||
|
|
||||||
|
if firstBytes == b"":
|
||||||
|
break
|
||||||
|
|
||||||
|
return True
|
||||||
|
|
||||||
|
def compare(first, second):
|
||||||
|
FILES_TO_IGNORE = ["META-INF/MANIFEST.MF", "META-INF/CERT.RSA", "META-INF/CERT.SF"]
|
||||||
|
|
||||||
|
firstZip = ZipFile(first, 'r')
|
||||||
|
secondZip = ZipFile(second, 'r')
|
||||||
|
|
||||||
|
firstList = list(filter(lambda firstInfo: firstInfo.filename not in FILES_TO_IGNORE, firstZip.infolist()))
|
||||||
|
secondList = list(filter(lambda secondInfo: secondInfo.filename not in FILES_TO_IGNORE, secondZip.infolist()))
|
||||||
|
|
||||||
|
if len(firstList) != len(secondList):
|
||||||
|
print("APKs has different amount of files (%d != %d)" % (len(firstList), len(secondList)))
|
||||||
|
return False
|
||||||
|
|
||||||
|
for firstInfo in firstList:
|
||||||
|
found = False
|
||||||
|
for secondInfo in secondList:
|
||||||
|
if firstInfo.filename == secondInfo.filename:
|
||||||
|
found = True
|
||||||
|
firstFile = firstZip.open(firstInfo, 'r')
|
||||||
|
secondFile = secondZip.open(secondInfo, 'r')
|
||||||
|
|
||||||
|
if compareFiles(firstFile, secondFile) != True:
|
||||||
|
print("APK file %s does not match" % firstInfo.filename)
|
||||||
|
return False
|
||||||
|
|
||||||
|
secondList.remove(secondInfo)
|
||||||
|
break
|
||||||
|
|
||||||
|
if found == False:
|
||||||
|
print("file %s not found in second APK" % firstInfo.filename)
|
||||||
|
return False
|
||||||
|
|
||||||
|
if len(secondList) != 0:
|
||||||
|
for secondInfo in secondList:
|
||||||
|
print("file %s not found in first APK" % secondInfo.filename)
|
||||||
|
return False
|
||||||
|
|
||||||
|
return True
|
||||||
|
|
||||||
|
if __name__ == '__main__':
|
||||||
|
if len(sys.argv) != 3:
|
||||||
|
print("Usage: apkdiff <pathToFirstApk> <pathToSecondApk>")
|
||||||
|
sys.exit(1)
|
||||||
|
|
||||||
|
if sys.argv[1] == sys.argv[2] or compare(sys.argv[1], sys.argv[2]) == True:
|
||||||
|
print("APKs are the same!")
|
||||||
|
else:
|
||||||
|
print("APKs are different!")
|
Loading…
Reference in New Issue
Block a user