Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Replace mitchellh/go used for macOS notarization #851

Merged
merged 4 commits into from
Nov 7, 2023
Merged

Replace mitchellh/go used for macOS notarization #851

merged 4 commits into from
Nov 7, 2023

Conversation

umbynos
Copy link
Contributor

@umbynos umbynos commented Nov 6, 2023
edited
Loading

Please check if the PR fulfills these requirements

  • The PR has no duplicates (please search among the Pull Requests
    before creating one)
  • Tests for the changes have been added (for bug fixes / features)
  • What kind of change does this PR introduce?

change in tooling see arduino/tooling-project-assets#359

  • What is the current behavior?

An excellent tool named gon was used to perform the notarization.
the latest stable release of gon uses the altool command-line utility for notarization:
https://github.com/mitchellh/gon/blob/v0.2.5/notarize/upload.go#L41

Using altool for notarization is now deprecated by Apple and support for notarization via this tool is scheduled to be disabled 2023-11-01:
https://developer.apple.com/news/?id=y5mjxqmn

Furthermore, gon was archived

  • What is the new behavior?

I switched to https://github.com/Bearer/gon that has included mitchellh/gon#72, hoping the maintainers will take the responsibility of maintaining the project.
I added also AC_PROVIDER env var which is mandatory with the new notarytool.

  • Does this PR introduce a breaking change?

no

  • Other information:

I split the signing/notarization of the bundle, because the Bearer fork does not include support for --deep signing.

Test release here:
Uploading ArduinoCreateAgent-1.3.4-rc2-osx-amd64-installer.zip…

@umbynos umbynos added type: enhancement Proposed improvement os: macos Specific to macOS operating system labels Nov 6, 2023
@umbynos umbynos self-assigned this Nov 6, 2023
@codecov-commenter
Copy link

codecov-commenter commented Nov 6, 2023
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Comparison is base (9358518) 19.62% compared to head (134d250) 19.62%.

Additional details and impacted files 
@@           Coverage Diff           @@
##             main     #851   +/-   ##
=======================================
  Coverage   19.62%   19.62%           
=======================================
  Files          46       46           
  Lines        3685     3685           
=======================================
  Hits          723      723           
  Misses       2868     2868           
  Partials       94       94
Flag Coverage Δ
unit 19.62% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@umbynos umbynos force-pushed the gon-bye branch 4 times, most recently from adef020 to 79d6ae7 Compare November 6, 2023 15:41
@umbynos
switch to gon fork, apple is deprecating altool to notarize.
06fc10e 
I split the singing/notarization because Bearer fork does not implement `--deep` for signing
@umbynos umbynos marked this pull request as draft November 6, 2023 16:26
@umbynos umbynos requested a review from ubidefeo November 7, 2023 11:18
@umbynos umbynos marked this pull request as ready for review November 7, 2023 11:20
ubidefeo
ubidefeo approved these changes Nov 7, 2023
View reviewed changes
Copy link

@ubidefeo ubidefeo left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Tested on Ventura M1

@umbynos umbynos merged commit 35a05dc into main Nov 7, 2023
61 checks passed
@umbynos umbynos deleted the gon-bye branch November 7, 2023 11:24
@umbynos umbynos restored the gon-bye branch November 7, 2023 13:31
@umbynos umbynos deleted the gon-bye branch November 7, 2023 13:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ubidefeo ubidefeo ubidefeo approved these changes

@MatteoPologruto MatteoPologruto MatteoPologruto approved these changes

@alessio-perugini alessio-perugini Awaiting requested review from alessio-perugini

Assignees

@umbynos umbynos

Labels
os: macos Specific to macOS operating system type: enhancement Proposed improvement
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@umbynos @codecov-commenter @ubidefeo @MatteoPologruto