mirror of
https://github.com/ckaczor/azuredatastudio.git
synced 2026-01-13 17:22:15 -05:00
8a3d08f0de
* Fix initial build breaks from 1.67 merge (#2514) * Update yarn lock files * Update build scripts * Fix tsconfig * Build breaks * WIP * Update yarn lock files * Misc breaks * Updates to package.json * Breaks * Update yarn * Fix breaks * Breaks * Build breaks * Breaks * Breaks * Breaks * Breaks * Breaks * Missing file * Breaks * Breaks * Breaks * Breaks * Breaks * Fix several runtime breaks (#2515) * Missing files * Runtime breaks * Fix proxy ordering issue * Remove commented code * Fix breaks with opening query editor * Fix post merge break * Updates related to setup build and other breaks (#2516) * Fix bundle build issues * Update distro * Fix distro merge and update build JS files * Disable pipeline steps * Remove stats call * Update license name * Make new RPM dependencies a warning * Fix extension manager version checks * Update JS file * Fix a few runtime breaks * Fixes * Fix runtime issues * Fix build breaks * Update notebook tests (part 1) * Fix broken tests * Linting errors * Fix hygiene * Disable lint rules * Bump distro * Turn off smoke tests * Disable integration tests * Remove failing "activate" test * Remove failed test assertion * Disable other broken test * Disable query history tests * Disable extension unit tests * Disable failing tasks
86 lines
4.0 KiB
JavaScript
86 lines
4.0 KiB
JavaScript
"use strict";
|
|
/*---------------------------------------------------------------------------------------------
|
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
* Licensed under the Source EULA. See License.txt in the project root for license information.
|
|
*--------------------------------------------------------------------------------------------*/
|
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
exports.main = void 0;
|
|
const cp = require("child_process");
|
|
const fs = require("fs");
|
|
const tmp = require("tmp");
|
|
const crypto = require("crypto");
|
|
function getParams(type) {
|
|
switch (type) {
|
|
case 'windows':
|
|
return '[{"keyCode":"CP-230012","operationSetCode":"SigntoolSign","parameters":[{"parameterName":"OpusName","parameterValue":"VS Code"},{"parameterName":"OpusInfo","parameterValue":"https://code.visualstudio.com/"},{"parameterName":"Append","parameterValue":"/as"},{"parameterName":"FileDigest","parameterValue":"/fd \\"SHA256\\""},{"parameterName":"PageHash","parameterValue":"/NPH"},{"parameterName":"TimeStamp","parameterValue":"/tr \\"http://rfc3161.gtm.corp.microsoft.com/TSS/HttpTspServer\\" /td sha256"}],"toolName":"sign","toolVersion":"1.0"},{"keyCode":"CP-230012","operationSetCode":"SigntoolVerify","parameters":[{"parameterName":"VerifyAll","parameterValue":"/all"}],"toolName":"sign","toolVersion":"1.0"}]';
|
|
case 'rpm':
|
|
return '[{ "keyCode": "CP-450779-Pgp", "operationSetCode": "LinuxSign", "parameters": [], "toolName": "sign", "toolVersion": "1.0" }]';
|
|
case 'darwin-sign':
|
|
return '[{"keyCode":"CP-401337-Apple","operationSetCode":"MacAppDeveloperSign","parameters":[{"parameterName":"Hardening","parameterValue":"--options=runtime"}],"toolName":"sign","toolVersion":"1.0"}]';
|
|
case 'darwin-notarize':
|
|
return '[{"keyCode":"CP-401337-Apple","operationSetCode":"MacAppNotarize","parameters":[],"toolName":"sign","toolVersion":"1.0"}]';
|
|
default:
|
|
throw new Error(`Sign type ${type} not found`);
|
|
}
|
|
}
|
|
function main([esrpCliPath, type, cert, username, password, folderPath, pattern]) {
|
|
tmp.setGracefulCleanup();
|
|
const patternPath = tmp.tmpNameSync();
|
|
fs.writeFileSync(patternPath, pattern);
|
|
const paramsPath = tmp.tmpNameSync();
|
|
fs.writeFileSync(paramsPath, getParams(type));
|
|
const keyFile = tmp.tmpNameSync();
|
|
const key = crypto.randomBytes(32);
|
|
const iv = crypto.randomBytes(16);
|
|
fs.writeFileSync(keyFile, JSON.stringify({ key: key.toString('hex'), iv: iv.toString('hex') }));
|
|
const clientkeyPath = tmp.tmpNameSync();
|
|
const clientkeyCypher = crypto.createCipheriv('aes-256-cbc', key, iv);
|
|
let clientkey = clientkeyCypher.update(password, 'utf8', 'hex');
|
|
clientkey += clientkeyCypher.final('hex');
|
|
fs.writeFileSync(clientkeyPath, clientkey);
|
|
const clientcertPath = tmp.tmpNameSync();
|
|
const clientcertCypher = crypto.createCipheriv('aes-256-cbc', key, iv);
|
|
let clientcert = clientcertCypher.update(cert, 'utf8', 'hex');
|
|
clientcert += clientcertCypher.final('hex');
|
|
fs.writeFileSync(clientcertPath, clientcert);
|
|
const args = [
|
|
esrpCliPath,
|
|
'vsts.sign',
|
|
'-a', username,
|
|
'-k', clientkeyPath,
|
|
'-z', clientcertPath,
|
|
'-f', folderPath,
|
|
'-p', patternPath,
|
|
'-u', 'false',
|
|
'-x', 'regularSigning',
|
|
'-b', 'input.json',
|
|
'-l', 'AzSecPack_PublisherPolicyProd.xml',
|
|
'-y', 'inlineSignParams',
|
|
'-j', paramsPath,
|
|
'-c', '9997',
|
|
'-t', '120',
|
|
'-g', '10',
|
|
'-v', 'Tls12',
|
|
'-s', 'https://api.esrp.microsoft.com/api/v1',
|
|
'-m', '0',
|
|
'-o', 'Microsoft',
|
|
'-i', 'https://www.microsoft.com',
|
|
'-n', '5',
|
|
'-r', 'true',
|
|
'-e', keyFile,
|
|
];
|
|
try {
|
|
cp.execFileSync('dotnet', args, { stdio: 'inherit' });
|
|
}
|
|
catch (err) {
|
|
console.error('ESRP failed');
|
|
console.error(err);
|
|
process.exit(1);
|
|
}
|
|
}
|
|
exports.main = main;
|
|
if (require.main === module) {
|
|
main(process.argv.slice(2));
|
|
process.exit(0);
|
|
}
|