signindex: support signing index-v1.jar

This is a bit different than index.jar: instead of their being index.xml and index_unsigned.jar, the presense of index-v1.json means that there is unsigned data. That file is then stuck into a jar and signed by the signing process. index-v1.json is never published to the repo. It is included in the binary transparency log, if that is enabled.
2025-11-12 18:20:29 +03:00 · 2017-03-16 18:51:43 +01:00 · 2017-03-16 18:51:43 +01:00 · 866528de5b
commit 866528de5b
parent fa657ce720
4 changed files with 57 additions and 8 deletions
--- a/fdroidserver/common.py
+++ b/fdroidserver/common.py
@ -34,6 +34,7 @@ import logging
 import hashlib
 import socket
 import base64
+import zipfile
 import xml.etree.ElementTree as XMLElementTree

 from datetime import datetime
@ -410,6 +411,24 @@ def signjar(jar):
        sys.exit(1)


+def sign_index_v1(repodir, json_name):
+    """
+    sign index-v1.json to make index-v1.jar
+
+    This is a bit different than index.jar: instead of their being index.xml
+    and index_unsigned.jar, the presense of index-v1.json means that there is
+    unsigned data.  That file is then stuck into a jar and signed by the
+    signing process.  index-v1.json is never published to the repo.  It is
+    included in the binary transparency log, if that is enabled.
+    """
+    name, ext = get_extension(json_name)
+    index_file = os.path.join(repodir, json_name)
+    jar_file = os.path.join(repodir, name + '.jar')
+    with zipfile.ZipFile(jar_file, 'w', zipfile.ZIP_DEFLATED) as jar:
+        jar.write(index_file, json_name)
+    signjar(jar_file)
+
+
 def get_local_metadata_files():
    '''get any metadata files local to an app's source repo

--- a/fdroidserver/signindex.py
+++ b/fdroidserver/signindex.py
@ -54,12 +54,19 @@ def main():

        unsigned = os.path.join(output_dir, 'index_unsigned.jar')
        if os.path.exists(unsigned):
-
            common.signjar(unsigned)
            os.rename(unsigned, os.path.join(output_dir, 'index.jar'))
            logging.info('Signed index in ' + output_dir)
            signed += 1

+        json_name = 'index-v1.json'
+        index_file = os.path.join(output_dir, json_name)
+        if os.path.exists(index_file):
+            common.sign_index_v1(output_dir, json_name)
+            os.remove(index_file)
+            logging.info('Signed ' + index_file)
+            signed += 1
+
    if signed == 0:
        logging.info("Nothing to do")

--- a/fdroidserver/update.py
+++ b/fdroidserver/update.py
@ -1282,13 +1282,9 @@ def make_index_v1(apps, packages, repodir, repodict, requestsdict):
        json.dump(output, fp, default=_index_encoder_default)

    if options.nosign:
-        logging.debug('index-v1 must have a signature, signindex will overwrite it!')
-
-    jar_file = os.path.join(repodir, 'index-v1.jar')
-    with zipfile.ZipFile(jar_file, 'w', zipfile.ZIP_DEFLATED) as jar:
-        jar.write(index_file, json_name)
-    common.signjar(jar_file)
-    os.remove(index_file)
+        logging.debug('index-v1 must have a signature, use `fdroid signindex` to create it!')
+    else:
+        common.sign_index_v1(repodir, json_name)


 def make_index_v0(apps, apks, repodir, repodict, requestsdict):