3 # init.py - part of the FDroid server tools
4 # Copyright (C) 2010-2013, Ciaran Gultnieks, ciaran@ciarang.com
5 # Copyright (C) 2013-2014 Daniel Martà <mvdan@mvdan.cc>
6 # Copyright (C) 2013 Hans-Christoph Steiner <hans@eds.org>
8 # This program is free software: you can redistribute it and/or modify
9 # it under the terms of the GNU Affero General Public License as published by
10 # the Free Software Foundation, either version 3 of the License, or
11 # (at your option) any later version.
13 # This program is distributed in the hope that it will be useful,
14 # but WITHOUT ANY WARRANTY; without even the implied warranty of
15 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 # GNU Affero General Public License for more details.
18 # You should have received a copy of the GNU Affero General Public License
19 # along with this program. If not, see <http://www.gnu.org/licenses/>.
27 from argparse import ArgumentParser
32 from .exception import FDroidException
38 def disable_in_config(key, value):
39 '''write a key/value to the local config.py, then comment it out'''
40 with open('config.py', 'r', encoding='utf8') as f:
42 pattern = '\n[\s#]*' + key + '\s*=\s*"[^"]*"'
43 repl = '\n#' + key + ' = "' + value + '"'
44 data = re.sub(pattern, repl, data)
45 with open('config.py', 'w', encoding='utf8') as f:
51 global options, config
53 # Parse command line...
54 parser = ArgumentParser()
55 common.setup_global_opts(parser)
56 parser.add_argument("-d", "--distinguished-name", default=None,
57 help=_("X.509 'Distinguished Name' used when generating keys"))
58 parser.add_argument("--keystore", default=None,
59 help=_("Path to the keystore for the repo signing key"))
60 parser.add_argument("--repo-keyalias", default=None,
61 help=_("Alias of the repo signing key in the keystore"))
62 parser.add_argument("--android-home", default=None,
63 help=_("Path to the Android SDK (sometimes set in ANDROID_HOME)"))
64 parser.add_argument("--no-prompt", action="store_true", default=False,
65 help=_("Do not prompt for Android SDK path, just fail"))
66 options = parser.parse_args()
68 # find root install prefix
69 tmp = os.path.dirname(sys.argv[0])
71 if os.path.basename(tmp) == 'bin':
72 egg_link = os.path.join(tmp, '..', 'local/lib/python2.7/site-packages/fdroidserver.egg-link')
73 if os.path.exists(egg_link):
74 # installed from local git repo
75 examplesdir = os.path.join(open(egg_link).readline().rstrip(), 'examples')
78 examplesdir = os.path.dirname(os.path.dirname(__file__)) + '/share/doc/fdroidserver/examples'
79 if not os.path.exists(examplesdir): # use UNIX layout
80 examplesdir = os.path.dirname(tmp) + '/share/doc/fdroidserver/examples'
82 # we're running straight out of the git repo
83 prefix = os.path.normpath(os.path.join(os.path.dirname(__file__), '..'))
84 examplesdir = prefix + '/examples'
87 fdroiddir = os.getcwd()
89 common.fill_config_defaults(test_config)
91 # track down where the Android SDK is, the default is to use the path set
92 # in ANDROID_HOME if that exists, otherwise None
93 if options.android_home is not None:
94 test_config['sdk_path'] = options.android_home
95 elif not common.test_sdk_exists(test_config):
96 if os.path.isfile('/usr/bin/aapt'):
97 # remove sdk_path and build_tools, they are not required
98 test_config.pop('sdk_path', None)
99 test_config.pop('build_tools', None)
100 # make sure at least aapt is found, since this can't do anything without it
101 test_config['aapt'] = common.find_sdk_tools_cmd('aapt')
103 # if neither --android-home nor the default sdk_path
104 # exist, prompt the user using platform-specific default
105 default_sdk_path = '/opt/android-sdk'
106 if sys.platform == 'win32' or sys.platform == 'cygwin':
107 p = os.path.join(os.getenv('USERPROFILE'),
108 'AppData', 'Local', 'Android', 'android-sdk')
109 elif sys.platform == 'darwin':
110 # on OSX, Homebrew is common and has an easy path to detect
111 p = '/usr/local/opt/android-sdk'
113 # if the Debian packages are installed, suggest them
114 p = '/usr/lib/android-sdk'
115 if os.path.exists(p):
118 while not options.no_prompt:
120 s = input(_('Enter the path to the Android SDK (%s) here:\n> ') % default_sdk_path)
121 except KeyboardInterrupt:
124 if re.match('^\s*$', s) is not None:
125 test_config['sdk_path'] = default_sdk_path
127 test_config['sdk_path'] = s
128 if common.test_sdk_exists(test_config):
130 if not common.test_sdk_exists(test_config):
131 raise FDroidException("Android SDK not found.")
133 if not os.path.exists('config.py'):
134 # 'metadata' and 'tmp' are created in fdroid
135 if not os.path.exists('repo'):
137 shutil.copy(os.path.join(examplesdir, 'fdroid-icon.png'), fdroiddir)
138 shutil.copyfile(os.path.join(examplesdir, 'config.py'), 'config.py')
139 os.chmod('config.py', 0o0600)
140 # If android_home is None, test_config['sdk_path'] will be used and
141 # "$ANDROID_HOME" may be used if the env var is set up correctly.
142 # If android_home is not None, the path given from the command line
143 # will be directly written in the config.
144 if 'sdk_path' in test_config:
145 common.write_to_config(test_config, 'sdk_path', options.android_home)
147 logging.warn('Looks like this is already an F-Droid repo, cowardly refusing to overwrite it...')
148 logging.info('Try running `fdroid init` in an empty directory.')
149 raise FDroidException('Repository already exists.')
151 if 'aapt' not in test_config or not os.path.isfile(test_config['aapt']):
152 # try to find a working aapt, in all the recent possible paths
153 build_tools = os.path.join(test_config['sdk_path'], 'build-tools')
155 aaptdirs.append(os.path.join(build_tools, test_config['build_tools']))
156 aaptdirs.append(build_tools)
157 for f in os.listdir(build_tools):
158 if os.path.isdir(os.path.join(build_tools, f)):
159 aaptdirs.append(os.path.join(build_tools, f))
160 for d in sorted(aaptdirs, reverse=True):
161 if os.path.isfile(os.path.join(d, 'aapt')):
162 aapt = os.path.join(d, 'aapt')
164 if os.path.isfile(aapt):
165 dirname = os.path.basename(os.path.dirname(aapt))
166 if dirname == 'build-tools':
167 # this is the old layout, before versioned build-tools
168 test_config['build_tools'] = ''
170 test_config['build_tools'] = dirname
171 common.write_to_config(test_config, 'build_tools')
172 common.ensure_build_tools_exists(test_config)
174 # now that we have a local config.py, read configuration...
175 config = common.read_config(options)
177 # the NDK is optional and there may be multiple versions of it, so it's
178 # left for the user to configure
180 # find or generate the keystore for the repo signing key. First try the
181 # path written in the default config.py. Then check if the user has
182 # specified a path from the command line, which will trump all others.
183 # Otherwise, create ~/.local/share/fdroidserver and stick it in there. If
184 # keystore is set to NONE, that means that Java will look for keys in a
185 # Hardware Security Module aka Smartcard.
186 keystore = config['keystore']
188 keystore = os.path.abspath(options.keystore)
189 if options.keystore == 'NONE':
190 keystore = options.keystore
192 keystore = os.path.abspath(options.keystore)
193 if not os.path.exists(keystore):
194 logging.info('"' + keystore
195 + '" does not exist, creating a new keystore there.')
196 common.write_to_config(test_config, 'keystore', keystore)
198 if options.repo_keyalias:
199 repo_keyalias = options.repo_keyalias
200 common.write_to_config(test_config, 'repo_keyalias', repo_keyalias)
201 if options.distinguished_name:
202 keydname = options.distinguished_name
203 common.write_to_config(test_config, 'keydname', keydname)
204 if keystore == 'NONE': # we're using a smartcard
205 common.write_to_config(test_config, 'repo_keyalias', '1') # seems to be the default
206 disable_in_config('keypass', 'never used with smartcard')
207 common.write_to_config(test_config, 'smartcardoptions',
208 ('-storetype PKCS11 -providerName SunPKCS11-OpenSC '
209 + '-providerClass sun.security.pkcs11.SunPKCS11 '
210 + '-providerArg opensc-fdroid.cfg'))
211 # find opensc-pkcs11.so
212 if not os.path.exists('opensc-fdroid.cfg'):
213 if os.path.exists('/usr/lib/opensc-pkcs11.so'):
214 opensc_so = '/usr/lib/opensc-pkcs11.so'
215 elif os.path.exists('/usr/lib64/opensc-pkcs11.so'):
216 opensc_so = '/usr/lib64/opensc-pkcs11.so'
218 files = glob.glob('/usr/lib/' + os.uname()[4] + '-*-gnu/opensc-pkcs11.so')
222 opensc_so = '/usr/lib/opensc-pkcs11.so'
223 logging.warn('No OpenSC PKCS#11 module found, ' +
224 'install OpenSC then edit "opensc-fdroid.cfg"!')
225 with open(os.path.join(examplesdir, 'opensc-fdroid.cfg'), 'r') as f:
226 opensc_fdroid = f.read()
227 opensc_fdroid = re.sub('^library.*', 'library = ' + opensc_so, opensc_fdroid,
229 with open('opensc-fdroid.cfg', 'w') as f:
230 f.write(opensc_fdroid)
231 elif not os.path.exists(keystore):
232 password = common.genpassword()
233 c = dict(test_config)
234 c['keystorepass'] = password
235 c['keypass'] = password
236 c['repo_keyalias'] = socket.getfqdn()
237 c['keydname'] = 'CN=' + c['repo_keyalias'] + ', OU=F-Droid'
238 common.write_to_config(test_config, 'keystorepass', password)
239 common.write_to_config(test_config, 'keypass', password)
240 common.write_to_config(test_config, 'repo_keyalias', c['repo_keyalias'])
241 common.write_to_config(test_config, 'keydname', c['keydname'])
242 common.genkeystore(c)
245 msg += _('Built repo based in "%s" with this config:') % fdroiddir
246 msg += '\n\n Android SDK:\t\t\t' + config['sdk_path']
248 msg += '\n Android SDK Build Tools:\t' + os.path.dirname(aapt)
249 msg += '\n Android NDK r12b (optional):\t$ANDROID_NDK'
250 msg += '\n ' + _('Keystore for signing key:\t') + keystore
251 if repo_keyalias is not None:
252 msg += '\n Alias for key in store:\t' + repo_keyalias
253 msg += '\n\n' + '''To complete the setup, add your APKs to "%s"
254 then run "fdroid update -c; fdroid update". You might also want to edit
255 "config.py" to set the URL, repo name, and more. You should also set up
256 a signing key (a temporary one might have been automatically generated).
258 For more info: https://f-droid.org/docs/Setup_an_F-Droid_App_Repo
259 and https://f-droid.org/docs/Signing_Process''' % os.path.join(fdroiddir, 'repo')