solvespace/.github/scripts/sign-macos.sh

#!/bin/bash -xe

lipo \
    -create \
        build/bin/SolveSpace.app/Contents/Resources/libomp.dylib \
        build-arm64/bin/SolveSpace.app/Contents/Resources/libomp.dylib \
    -output \
        build/bin/SolveSpace.app/Contents/Resources/libomp.dylib

lipo \
    -create \
        build/bin/SolveSpace.app/Contents/MacOS/SolveSpace \
        build-arm64/bin/SolveSpace.app/Contents/MacOS/SolveSpace \
    -output \
        build/bin/SolveSpace.app/Contents/MacOS/SolveSpace

lipo \
    -create \
        build/bin/SolveSpace.app/Contents/MacOS/solvespace-cli \
        build-arm64/bin/SolveSpace.app/Contents/MacOS/solvespace-cli \
    -output \
        build/bin/SolveSpace.app/Contents/MacOS/solvespace-cli

cd build

openmp="bin/SolveSpace.app/Contents/Resources/libomp.dylib"
app="bin/SolveSpace.app"
dmg="bin/SolveSpace.dmg"
bundle_id="com.solvespace.solvespace"

if [ "$CI" = "true" ]; then
    # get the signing certificate (this is the Developer ID:Application: Your Name, exported to a p12 file, then converted to base64, e.g.: cat ~/Desktop/certificate.p12 | base64 | pbcopy)
    echo $MACOS_CERTIFICATE_P12 | base64 --decode > certificate.p12

    # create a keychain
    security create-keychain -p secret build.keychain
    security default-keychain -s build.keychain
    security unlock-keychain -p secret build.keychain

    # import the key
    security import certificate.p12 -k build.keychain -P "${MACOS_CERTIFICATE_PASSWORD}" -T /usr/bin/codesign

    security set-key-partition-list -S apple-tool:,apple: -s -k secret build.keychain

    # check if all is good
    security find-identity -v
fi

# sign openmp
codesign -s "${MACOS_DEVELOPER_ID}" --timestamp --options runtime -f --deep "${openmp}"

# sign the .app
codesign -s "${MACOS_DEVELOPER_ID}" --timestamp --options runtime -f --deep "${app}"

# create the .dmg from the signed .app
hdiutil create -srcfolder "${app}" "${dmg}"

# sign the .dmg
codesign -s "${MACOS_DEVELOPER_ID}" --timestamp --options runtime -f --deep "${dmg}"

# notarize and store request uuid in variable
notarize_uuid=$(xcrun altool --notarize-app --primary-bundle-id "${bundle_id}" --username "${MACOS_APPSTORE_USERNAME}" --password "${MACOS_APPSTORE_APP_PASSWORD}" --file "${dmg}" 2>&1 | grep RequestUUID | awk '{print $3'})

echo $notarize_uuid

# wait a bit so we don't get errors during checking
sleep 10

success=0
for (( ; ; ))
do
    echo "Checking progress..."
    progress=$(xcrun altool --notarization-info "${notarize_uuid}" -u "${MACOS_APPSTORE_USERNAME}" -p "${MACOS_APPSTORE_APP_PASSWORD}" 2>&1)
    # echo "${progress}"
 
    if [ $? -ne 0 ] || [[  "${progress}" =~ "Invalid" ]] ; then
        echo "Error with notarization. Exiting"
        break
    fi
 
    if [[  "${progress}" =~ "success" ]]; then
        success=1
        break
    else
        echo "Not completed yet. Sleeping for 10 seconds"
    fi
    sleep 10
done

# staple
xcrun stapler staple "${dmg}"
Travis: CI improvements and fixing edge builds (#766) - Fix release notes by using edge deploy provider, see: https://github.com/travis-ci/dpl/pull/1069 - Deploy only on master branch - Move to arm64-graviton2 - Rename debian -> ubuntu - Remove appveyor.yml - Remove redundant deploy stage in build step names - Get rid of bash code in files using sh, and explicitly use bash in sign-macos.sh script - Add missing newline to build-windows.sh - Build x86 for Windows - Enable OpenMP in test builds - Disable sanitizers on macOS test build - Disallow failures on snap build 2020-10-24 09:08:40 +00:00			`#!/bin/bash -xe`
Add macOS travis config, fix issue in CMakeLists.txt causing macOS build to break 2020-10-17 15:05:10 +00:00
Combine arm64 and x86_64 libomp libraries 2021-04-04 18:24:22 +00:00			`lipo \`
			`-create \`
			`build/bin/SolveSpace.app/Contents/Resources/libomp.dylib \`
			`build-arm64/bin/SolveSpace.app/Contents/Resources/libomp.dylib \`
			`-output \`
			`build/bin/SolveSpace.app/Contents/Resources/libomp.dylib`

Add apple arm64 support 2021-02-08 00:07:21 +00:00			`lipo \`
			`-create \`
			`build/bin/SolveSpace.app/Contents/MacOS/SolveSpace \`
			`build-arm64/bin/SolveSpace.app/Contents/MacOS/SolveSpace \`
			`-output \`
			`build/bin/SolveSpace.app/Contents/MacOS/SolveSpace`

			`lipo \`
			`-create \`
			`build/bin/SolveSpace.app/Contents/MacOS/solvespace-cli \`
			`build-arm64/bin/SolveSpace.app/Contents/MacOS/solvespace-cli \`
			`-output \`
			`build/bin/SolveSpace.app/Contents/MacOS/solvespace-cli`

Add macOS travis config, fix issue in CMakeLists.txt causing macOS build to break 2020-10-17 15:05:10 +00:00			`cd build`

Correct libomp.dylib path in sign-macos.sh script 2021-04-04 17:15:00 +00:00			`openmp="bin/SolveSpace.app/Contents/Resources/libomp.dylib"`
macOS CI fixes 2020-10-19 09:24:37 +00:00			`app="bin/SolveSpace.app"`
Add macOS travis config, fix issue in CMakeLists.txt causing macOS build to break 2020-10-17 15:05:10 +00:00			`dmg="bin/SolveSpace.dmg"`
			`bundle_id="com.solvespace.solvespace"`

Travis: Build improvements and fixes (#751) - Add OpenMP to macOS build - Use as many cores as possible in CI - Update travis osx image to xcode12.2 - Ignore .vscode folder - In `.travis/sign-macos.sh`, only create keychain when `CI` variable is present - Only run macOS deploy stage when a tag is pushed 2020-10-20 07:39:26 +00:00			`if [ "$CI" = "true" ]; then`
			`# get the signing certificate (this is the Developer ID:Application: Your Name, exported to a p12 file, then converted to base64, e.g.: cat ~/Desktop/certificate.p12 \| base64 \| pbcopy)`
			`echo $MACOS_CERTIFICATE_P12 \| base64 --decode > certificate.p12`
Add macOS travis config, fix issue in CMakeLists.txt causing macOS build to break 2020-10-17 15:05:10 +00:00
Travis: Build improvements and fixes (#751) - Add OpenMP to macOS build - Use as many cores as possible in CI - Update travis osx image to xcode12.2 - Ignore .vscode folder - In `.travis/sign-macos.sh`, only create keychain when `CI` variable is present - Only run macOS deploy stage when a tag is pushed 2020-10-20 07:39:26 +00:00			`# create a keychain`
			`security create-keychain -p secret build.keychain`
			`security default-keychain -s build.keychain`
			`security unlock-keychain -p secret build.keychain`
Add macOS travis config, fix issue in CMakeLists.txt causing macOS build to break 2020-10-17 15:05:10 +00:00
Travis: Build improvements and fixes (#751) - Add OpenMP to macOS build - Use as many cores as possible in CI - Update travis osx image to xcode12.2 - Ignore .vscode folder - In `.travis/sign-macos.sh`, only create keychain when `CI` variable is present - Only run macOS deploy stage when a tag is pushed 2020-10-20 07:39:26 +00:00			`# import the key`
Travis: update travis and macos build configs - Fixing warnings in .travis.yml - Enable building on all cores for macOS build - Quote variables 2020-10-20 12:14:49 +00:00			`security import certificate.p12 -k build.keychain -P "${MACOS_CERTIFICATE_PASSWORD}" -T /usr/bin/codesign`
Add macOS travis config, fix issue in CMakeLists.txt causing macOS build to break 2020-10-17 15:05:10 +00:00
Travis: Build improvements and fixes (#751) - Add OpenMP to macOS build - Use as many cores as possible in CI - Update travis osx image to xcode12.2 - Ignore .vscode folder - In `.travis/sign-macos.sh`, only create keychain when `CI` variable is present - Only run macOS deploy stage when a tag is pushed 2020-10-20 07:39:26 +00:00			`security set-key-partition-list -S apple-tool:,apple: -s -k secret build.keychain`
Add macOS travis config, fix issue in CMakeLists.txt causing macOS build to break 2020-10-17 15:05:10 +00:00
Travis: Build improvements and fixes (#751) - Add OpenMP to macOS build - Use as many cores as possible in CI - Update travis osx image to xcode12.2 - Ignore .vscode folder - In `.travis/sign-macos.sh`, only create keychain when `CI` variable is present - Only run macOS deploy stage when a tag is pushed 2020-10-20 07:39:26 +00:00			`# check if all is good`
			`security find-identity -v`
			`fi`
Add macOS travis config, fix issue in CMakeLists.txt causing macOS build to break 2020-10-17 15:05:10 +00:00
Travis: sign libomp.dylib 2020-10-26 02:38:32 +00:00			`# sign openmp`
			`codesign -s "${MACOS_DEVELOPER_ID}" --timestamp --options runtime -f --deep "${openmp}"`

macOS CI fixes 2020-10-19 09:24:37 +00:00			`# sign the .app`
			`codesign -s "${MACOS_DEVELOPER_ID}" --timestamp --options runtime -f --deep "${app}"`

			`# create the .dmg from the signed .app`
			`hdiutil create -srcfolder "${app}" "${dmg}"`

Add macOS travis config, fix issue in CMakeLists.txt causing macOS build to break 2020-10-17 15:05:10 +00:00			`# sign the .dmg`
Update .travis.yml for macOS build Update .travis.yml for macOS build Add executable permission on sign-macos.sh script 2020-10-18 08:50:02 +00:00			`codesign -s "${MACOS_DEVELOPER_ID}" --timestamp --options runtime -f --deep "${dmg}"`
Add macOS travis config, fix issue in CMakeLists.txt causing macOS build to break 2020-10-17 15:05:10 +00:00
			`# notarize and store request uuid in variable`
			`notarize_uuid=$(xcrun altool --notarize-app --primary-bundle-id "${bundle_id}" --username "${MACOS_APPSTORE_USERNAME}" --password "${MACOS_APPSTORE_APP_PASSWORD}" --file "${dmg}" 2>&1 \| grep RequestUUID \| awk '{print $3'})`

Update .travis.yml for macOS build Update .travis.yml for macOS build Add executable permission on sign-macos.sh script 2020-10-18 08:50:02 +00:00			`echo $notarize_uuid`

Add macOS travis config, fix issue in CMakeLists.txt causing macOS build to break 2020-10-17 15:05:10 +00:00			`# wait a bit so we don't get errors during checking`
Travis: release macOS and Windows edge builds - Fixes windows build type - Revert `cleanup: false` back to `skip_cleanup: true` - Waits 10 seconds to get notarize_uuid for macOS since it would sometimes fail 2020-10-21 19:13:49 +00:00			`sleep 10`
Add macOS travis config, fix issue in CMakeLists.txt causing macOS build to break 2020-10-17 15:05:10 +00:00
			`success=0`
			`for (( ; ; ))`
			`do`
			`echo "Checking progress..."`
			`progress=$(xcrun altool --notarization-info "${notarize_uuid}" -u "${MACOS_APPSTORE_USERNAME}" -p "${MACOS_APPSTORE_APP_PASSWORD}" 2>&1)`
Travis: use force to overwrite tag 2020-10-25 20:00:40 +00:00			`# echo "${progress}"`
Add macOS travis config, fix issue in CMakeLists.txt causing macOS build to break 2020-10-17 15:05:10 +00:00
			`if [ $? -ne 0 ] \|\| [[ "${progress}" =~ "Invalid" ]] ; then`
			`echo "Error with notarization. Exiting"`
			`break`
			`fi`

			`if [[ "${progress}" =~ "success" ]]; then`
			`success=1`
			`break`
			`else`
			`echo "Not completed yet. Sleeping for 10 seconds"`
			`fi`
			`sleep 10`
			`done`

			`# staple`
Travis: skip build if tag is edge, staple to the .dmg 2020-10-25 18:44:30 +00:00			`xcrun stapler staple "${dmg}"`