F-Droid Devs

107 Members
#fdroid-dev F-Droid development discussion only | Use #fdroid:f-droid.org for general, app- and repo-related matters | Meeting every Thursday at 11:30 UTC | This channel is publicly logged at https://matrix.f-droid.org/alias/%23fdroid-dev:f-droid.org16 Servers

Load older messages


SenderMessageTime
24 Sep 2020
@eighthave:matrix.org_hcstarted as a simple whitelabel idea but as I told about all our offerings, they were quite interested17:06:40
@eighthave:matrix.org_hc cdesai: do you know if apps an get CAP_NET_ADMIN on Android? https://gitlab.torproject.org/tpo/core/tor/-/issues/32091#note_2709550 17:12:29
@freenode_cdesai:matrix.orgcdesai _hc: doesn't look like it. I see that it's explicitly set for some system/vendor processes, which would mean it isn't obtainable by normal means 17:19:08
@freenode_cdesai:matrix.orgcdesaiexample: https://source.android.com/devices/tech/config/ambient17:19:44
25 Sep 2020
@kitsunyan:matrix.orgkitsunyanI just tried to rebuild the APK using a simple python script (+ zipalign after rebuild)09:16:01
@kitsunyan:matrix.orgkitsunyanAnd of course I got different APKs because python script compresses the files differently09:17:18
@kitsunyan:matrix.orgkitsunyanBut at least it was easy to preserve the order09:17:51
@kitsunyan:matrix.orgkitsunyanOh, nice.10:01:06
@kitsunyan:matrix.orgkitsunyanIt seem I got the same APK file10:01:17
@freenode_wb9688:matrix.orgwb9688 kitsunyan: With v2? If so, nice! 11:31:10
@kitsunyan:matrix.orgkitsunyanNo, I didn't try to extract v2 keys.11:32:08
@kitsunyan:matrix.orgkitsunyanI just wanted to unpack the apk and then pack it back. It was signed with v1 key only.11:32:54
@freenode_wb9688:matrix.orgwb9688Ah, v1-only11:33:19
@kitsunyan:matrix.orgkitsunyanThis is still important.11:33:43
@kitsunyan:matrix.orgkitsunyanIt means it's possible to unpack a built on buildserver apk which may contain entries in different order.11:35:10
@kitsunyan:matrix.orgkitsunyanAnd then pack it in the same order as in provided apk (or as in MANIFEST.MF, I suppose)11:35:50
@kitsunyan:matrix.orgkitsunyanAnd it should be the same apk (without v2 key, which can be extracted and appended to the end of the apk)11:36:37
@kitsunyan:matrix.orgkitsunyanThe only problem is that MANIFEST.MF doesn't contain all files.11:37:15
@kitsunyan:matrix.orgkitsunyanI'll make some tests later11:37:31
@eighthave:matrix.org_hcfor reproducible builds using v2/v3 sigs, I think the approach that will work will be reproducing the build environment, e.g. a ".buildinfo" file to describe all the important bits11:37:57
@eighthave:matrix.org_hcGoogle has already been moving the gradle tools in that direction, so there isn't so much that needs to be controlled.11:38:37
@eighthave:matrix.org_hcprobably the Java version really11:38:44
@eighthave:matrix.org_hcfor example, the standard build env generally declares which versions of Gradle, Gradle Android Plugin, build-tools, and NDK11:39:51
@kitsunyan:matrix.orgkitsunyan In this case it would make sense to use .buildinfo for all reproducible builds, not only v2/v3 11:40:30
@kitsunyan:matrix.orgkitsunyanIt's also not clear how build results depend on environment11:40:58
@eighthave:matrix.org_hcyes sure, but its much easier to reproduce APKs when the standard is the v1 sig11:41:03
@kitsunyan:matrix.orgkitsunyanI still don't know why resource shrinker failed on buildserver, it was the same java version, the same build tools version, etc11:41:46
@eighthave:matrix.org_hcwith a buildserver instance, its pretty easy to run controlled build variants to see what differs11:41:50
@eighthave:matrix.org_hcthat's the idea of the jobs on jenkins.debian.net11:42:00
@eighthave:matrix.org_hcPNG crunching is non-deterministic11:42:11

Show newer messages


Back to Room ListRoom Version: 1