mirror/yacreader
1
0
Fork 0
mirror of https://github.com/YACReader/yacreader synced 2025-10-11 06:27:22 -04:00
Code Issues Actions Packages Projects Releases Wiki Activity

Add some debugging to know why signed installer don't end in the release
Some checks failed
Build / Initialization (push) Has been cancelled
Details
Build / Code Format Validation (push) Has been cancelled
Details
Build / Linux (Qt5) (push) Has been cancelled
Details
Build / Linux (Qt6) (push) Has been cancelled
Details
Build / Linux (Qt6 + 7zip) (push) Has been cancelled
Details
Build / macOS (Qt6 Universal) (push) Has been cancelled
Details
Build / macOS (Qt5) (push) Has been cancelled
Details
Build / Windows x64 (Qt5) (push) Has been cancelled
Details
Build / Windows x64 (Qt6) (push) Has been cancelled
Details
Build / Windows x86 (Qt5) (push) Has been cancelled
Details
Build / Docker amd64 Image (push) Has been cancelled
Details
Build / Docker arm64 Image (push) Has been cancelled
Details
Build / Publish Dev Builds (push) Has been cancelled
Details
Build / Publish Release (push) Has been cancelled
Details

Browse Source
This commit is contained in:
Luis Ángel San Martín
2025-10-07 20:11:17 +02:00
parent fb722e5c06
commit f2e17632fe
1 changed files with 116 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

118
.github/workflows/build.yml vendored
View File

@ -337,12 +337,22 @@ jobs:
if: github.repository == 'YACReader/yacreader' && (github.ref == 'refs/heads/master' || github.ref == 'refs/heads/develop') if: github.repository == 'YACReader/yacreader' && (github.ref == 'refs/heads/master' || github.ref == 'refs/heads/develop')
shell: pwsh shell: pwsh
run: | run: |
Write-Host "=== Files in signed directory before move ==="
Get-ChildItem -Path "ci/win/Output/signed" -Filter "*.exe" | ForEach-Object { Write-Host " $($_.Name) - $($_.Length) bytes" }
$signedFiles = Get-ChildItem -Path "ci/win/Output/signed" -Filter "*.exe" $signedFiles = Get-ChildItem -Path "ci/win/Output/signed" -Filter "*.exe"
foreach ($signedFile in $signedFiles) { foreach ($signedFile in $signedFiles) {
$destPath = "ci/win/Output/$($signedFile.Name)" $destPath = "ci/win/Output/$($signedFile.Name)"
Write-Host "Moving signed: $($signedFile.Name) -> $destPath"
Move-Item -Path $signedFile.FullName -Destination $destPath -Force Move-Item -Path $signedFile.FullName -Destination $destPath -Force
Write-Host " Moved successfully"
} }
Write-Host "=== Files in Output directory after move ==="
Get-ChildItem -Path "ci/win/Output" -Filter "*.exe" | ForEach-Object { Write-Host " $($_.Name) - $($_.Length) bytes" }
Remove-Item -Path "ci/win/Output/signed" -Recurse -Force -ErrorAction SilentlyContinue Remove-Item -Path "ci/win/Output/signed" -Recurse -Force -ErrorAction SilentlyContinue
Write-Host "Cleaned up signed directory"
- name: Upload installer - name: Upload installer
uses: actions/upload-artifact@v4 uses: actions/upload-artifact@v4
@ -453,12 +463,22 @@ jobs:
if: github.repository == 'YACReader/yacreader' && (github.ref == 'refs/heads/master' || github.ref == 'refs/heads/develop') if: github.repository == 'YACReader/yacreader' && (github.ref == 'refs/heads/master' || github.ref == 'refs/heads/develop')
shell: pwsh shell: pwsh
run: | run: |
Write-Host "=== Files in signed directory before move ==="
Get-ChildItem -Path "ci/win/Output/signed" -Filter "*.exe" | ForEach-Object { Write-Host " $($_.Name) - $($_.Length) bytes" }
$signedFiles = Get-ChildItem -Path "ci/win/Output/signed" -Filter "*.exe" $signedFiles = Get-ChildItem -Path "ci/win/Output/signed" -Filter "*.exe"
foreach ($signedFile in $signedFiles) { foreach ($signedFile in $signedFiles) {
$destPath = "ci/win/Output/$($signedFile.Name)" $destPath = "ci/win/Output/$($signedFile.Name)"
Write-Host "Moving signed: $($signedFile.Name) -> $destPath"
Move-Item -Path $signedFile.FullName -Destination $destPath -Force Move-Item -Path $signedFile.FullName -Destination $destPath -Force
Write-Host " Moved successfully"
} }
Write-Host "=== Files in Output directory after move ==="
Get-ChildItem -Path "ci/win/Output" -Filter "*.exe" | ForEach-Object { Write-Host " $($_.Name) - $($_.Length) bytes" }
Remove-Item -Path "ci/win/Output/signed" -Recurse -Force -ErrorAction SilentlyContinue Remove-Item -Path "ci/win/Output/signed" -Recurse -Force -ErrorAction SilentlyContinue
Write-Host "Cleaned up signed directory"
- name: Upload installer - name: Upload installer
uses: actions/upload-artifact@v4 uses: actions/upload-artifact@v4
@ -553,12 +573,22 @@ jobs:
if: github.repository == 'YACReader/yacreader' && (github.ref == 'refs/heads/master' || github.ref == 'refs/heads/develop') if: github.repository == 'YACReader/yacreader' && (github.ref == 'refs/heads/master' || github.ref == 'refs/heads/develop')
shell: pwsh shell: pwsh
run: | run: |
Write-Host "=== Files in signed directory before move ==="
Get-ChildItem -Path "ci/win/Output/signed" -Filter "*.exe" | ForEach-Object { Write-Host " $($_.Name) - $($_.Length) bytes" }
$signedFiles = Get-ChildItem -Path "ci/win/Output/signed" -Filter "*.exe" $signedFiles = Get-ChildItem -Path "ci/win/Output/signed" -Filter "*.exe"
foreach ($signedFile in $signedFiles) { foreach ($signedFile in $signedFiles) {
$destPath = "ci/win/Output/$($signedFile.Name)" $destPath = "ci/win/Output/$($signedFile.Name)"
Write-Host "Moving signed: $($signedFile.Name) -> $destPath"
Move-Item -Path $signedFile.FullName -Destination $destPath -Force Move-Item -Path $signedFile.FullName -Destination $destPath -Force
Write-Host " Moved successfully"
} }
Write-Host "=== Files in Output directory after move ==="
Get-ChildItem -Path "ci/win/Output" -Filter "*.exe" | ForEach-Object { Write-Host " $($_.Name) - $($_.Length) bytes" }
Remove-Item -Path "ci/win/Output/signed" -Recurse -Force -ErrorAction SilentlyContinue Remove-Item -Path "ci/win/Output/signed" -Recurse -Force -ErrorAction SilentlyContinue
Write-Host "Cleaned up signed directory"
- name: Upload installer - name: Upload installer
uses: actions/upload-artifact@v4 uses: actions/upload-artifact@v4
@ -639,11 +669,53 @@ jobs:
with: with:
path: artifacts path: artifacts
- name: Flatten artifacts - name: List downloaded artifacts
run: |
echo "=== All artifacts downloaded ==="
ls -lR artifacts/
echo ""
echo "=== Windows artifacts only ==="
ls -l artifacts/windows-*/
- name: Flatten artifacts (exclude unsigned Windows installers)
run: | run: |
mkdir -p staging mkdir -p staging
# Copy all files except those from unsigned Windows artifact directories # Copy all files except those from unsigned Windows artifact directories
find artifacts -type f ! -path "*/windows-*-unsigned-*/*" -exec cp {} staging/ \; find artifacts -type f ! -path "*/windows-*-unsigned-*/*" -exec cp {} staging/ \;
echo ""
echo "=== Files copied to staging ==="
ls -lh staging/
echo ""
echo "=== Windows installers in staging ==="
ls -lh staging/YACReader*.exe || echo "No Windows installers found"
- name: Verify Windows installer signatures
run: |
echo "=== Installing osslsigncode to verify signatures ==="
sudo apt-get update
sudo apt-get install -y osslsigncode
echo ""
echo "=== Checking signatures on Windows installers ==="
for installer in staging/YACReader*.exe; do
if [ -f "$installer" ]; then
echo "Checking: $(basename $installer)"
echo "File size: $(stat -c%s $installer) bytes"
# Try to extract signature info
if osslsigncode verify -in "$installer" 2>&1 | grep -q "Signature verification: ok"; then
echo " ✓ SIGNED - Signature verified successfully"
osslsigncode verify -in "$installer" 2>&1 | grep -E "(Signed|Signer|Timestamp)"
else
echo " ✗ UNSIGNED or INVALID - No valid signature found"
osslsigncode verify -in "$installer" 2>&1 | head -20
fi
echo ""
fi
done
echo "=== Summary ==="
echo "Total installers in staging: $(ls staging/YACReader*.exe 2>/dev/null | wc -l)"
- name: Get version - name: Get version
id: version id: version
@ -710,11 +782,53 @@ jobs:
with: with:
path: artifacts path: artifacts
- name: Flatten artifacts - name: List downloaded artifacts
run: |
echo "=== All artifacts downloaded ==="
ls -lR artifacts/
echo ""
echo "=== Windows artifacts only ==="
ls -l artifacts/windows-*/
- name: Flatten artifacts (exclude unsigned Windows installers)
run: | run: |
mkdir -p staging mkdir -p staging
# Copy all files except those from unsigned Windows artifact directories # Copy all files except those from unsigned Windows artifact directories
find artifacts -type f ! -path "*/windows-*-unsigned-*/*" -exec cp {} staging/ \; find artifacts -type f ! -path "*/windows-*-unsigned-*/*" -exec cp {} staging/ \;
echo ""
echo "=== Files copied to staging ==="
ls -lh staging/
echo ""
echo "=== Windows installers in staging ==="
ls -lh staging/YACReader*.exe || echo "No Windows installers found"
- name: Verify Windows installer signatures
run: |
echo "=== Installing osslsigncode to verify signatures ==="
sudo apt-get update
sudo apt-get install -y osslsigncode
echo ""
echo "=== Checking signatures on Windows installers ==="
for installer in staging/YACReader*.exe; do
if [ -f "$installer" ]; then
echo "Checking: $(basename $installer)"
echo "File size: $(stat -c%s $installer) bytes"
# Try to extract signature info
if osslsigncode verify -in "$installer" 2>&1 | grep -q "Signature verification: ok"; then
echo " ✓ SIGNED - Signature verified successfully"
osslsigncode verify -in "$installer" 2>&1 | grep -E "(Signed|Signer|Timestamp)"
else
echo " ✗ UNSIGNED or INVALID - No valid signature found"
osslsigncode verify -in "$installer" 2>&1 | head -20
fi
echo ""
fi
done
echo "=== Summary ==="
echo "Total installers in staging: $(ls staging/YACReader*.exe 2>/dev/null | wc -l)"
- name: Get version - name: Get version
id: version id: version