make pythonbase.app usefull

Author: elelay

.circleci/config.yml

@@ -10,8 +10,8 @@ jobs:
       - run: ./bootstrap.sh
       - run: ./build.sh
       - run: ./bundle.sh
-      - run: ./release.sh _build/gPodder.app $(git describe --tags)
-      - run: rm -Rf _build/gPodder.app/
+      - run: ./release.sh _build/pythonbase.app $(git describe --tags)
+      - run: rm -Rf _build/pythonbase.app/ _build/run-*
       - store_artifacts:
           path: /Users/distiller/project/_build
   dummy:

README.asciidoc

@@ -2,10 +2,11 @@
 
 *Don't Panic*
 
-This is a collection of files required to build gPodder.app :
-gPodder as a native GTK+ Quartz application for Mac OS X 10.9+
+This is a collection of files required to build pythonbase.app:
+native dependencies to run gPodder as a native GTK+ Quartz application for Mac OS X 10.9+,
+with a working python interpreter and pip utility.
 
-The scripts are executed on circle.ci, with xcode 9.3.
+The scripts are executed on circle.ci, with xcode 9.4.1.
 
 NOTE: In case you want just want to run gPodder from source you can ignore all
 this and use the released bundle as a development environment.  Download the
@@ -54,8 +55,8 @@ https://wiki.gnome.org/Projects/GTK+/OSX/Building#line-38[here]).
 Releasing on OS X
 
 . see *<<Creating a Bundle>>*
-. test latest gPodder-base-xxx.zip on macOS
-. `git tag -a -m "bla bla" base-x.y.z`
+. test latest pythonbase-xxx.zip on macOS
+. `git tag -a -m "bla bla" YY.MM.DD`
 . `git push`
 . rerun the latest circleci master job (will pick the new tag)
 . `GITHUB_TOKEN=xxxx ./github_release.py --download --circle-build LATEST_CI_BUILD --previous-tag THE_PREVIOUS_RELEASE_TAG base-x.y.z`
@@ -65,19 +66,20 @@ Releasing on OS X
 . now you can update the tag in `.circleci/config.yml` of the gPodder project.
 
 
-Releasing on Linux by patching deps:
+Releasing on macOS by using the working pip:
 
 [start=4]
-. `./release_on_linux.sh ~/Downloads/gPodder-3.8.4_0.deps.zip /tmp/gpodder`
+git clone https://github.com/gpodder/gpodder.git
+cd gpodder
+./tools/mac-osx/release_on_mac.sh ~/Downloads/pythonbase-21.4.27.zips
 
 == Issues
 
-See https://github.com/elelay/gpodder-osx-bundle
+See https://github.com/gpodder/gpodder-osx-bundle
 
 == Using gPodder:
 
-See https://github.com/elelay/gpoder-osx-bundle/wiki/Using for instructions...
-And the official help guide http://gpodder.github.io/docs/
+See the official help guide http://gpodder.github.io/docs/
 
 == Content Description
 

bundle.sh

@@ -8,19 +8,23 @@ echo compiling native launcher...
 echo 'clang -mmacosx-version-min=10.9 -framework Foundation -L$PREFIX/lib `python3-config --cflags --ldflags --embed` -o $PREFIX/bin/python-launcher misc/bundle/launcher.m'| jhbuild shell
 
 echo creating app...
-jhbuild run gtk-mac-bundler misc/bundle/gpodder.bundle
+jhbuild run gtk-mac-bundler misc/bundle/pythonbase.bundle
 
 echo post-processing...
-APP="$QL_OSXBUNDLE_BUNDLE_DEST/gPodder.app"
+APP="$QL_OSXBUNDLE_BUNDLE_DEST/pythonbase.app"
 APP_PREFIX="$APP"/Contents/Resources
 JHBUILD_PREFIX="$HOME/gtk/inst"
 mydir=`pwd`
 
-# change case of gPodder.app
-mv "$QL_OSXBUNDLE_BUNDLE_DEST/gpodder.app" "$QL_OSXBUNDLE_BUNDLE_DEST/app.app"
-mv "$QL_OSXBUNDLE_BUNDLE_DEST/app.app" "$APP"
-
 
+CMDS="run-pip run-python"
+for cmd in ${CMDS}; do
+    cp -a "$APP"/Contents/MacOS/{pythonbase,$cmd}
+    if [ -e "$QL_OSXBUNDLE_BUNDLE_DEST/$cmd" ]; then
+        unlink "$QL_OSXBUNDLE_BUNDLE_DEST/$cmd"
+    fi
+    ln -s $(basename "$APP")/Contents/MacOS/$cmd "$QL_OSXBUNDLE_BUNDLE_DEST/"
+done
 
 # kill some useless files
 rm -Rf "$APP_PREFIX"/lib/python3.8/test
@@ -33,10 +37,10 @@ find "$APP_PREFIX"/lib/python3.8 -name '*.pyo' -delete
 echo checking for dynamic linking consistency : nothing should reference gtk/inst
 find "$APP_PREFIX" -name '*.so' -and -print -and  -exec sh -c 'otool -L $1 | grep /gtk/inst' '{}' '{}' ';'
 
-# make openssl option dir
+# make openssl option dir to prevent looking into /etc
 mkdir -p "$APP_PREFIX/etc/openssl"
 
 
 # list the provenance of every file in the bundle
-$mydir/misc/provenance.pl "$JHBUILD_PREFIX" "$APP" > "$QL_OSXBUNDLE_BUNDLE_DEST"/gPodder.contents
+$mydir/misc/provenance.pl "$JHBUILD_PREFIX" "$APP" > "$QL_OSXBUNDLE_BUNDLE_DEST"/pythonbase.contents
 

misc/bundle/Info.plist

@@ -5,7 +5,7 @@
     <key>CFBundleDevelopmentRegion</key>
     <string>English</string>
     <key>CFBundleExecutable</key>
-    <string>gpodder</string>
+    <string>pythonbase</string>
     <key>CFBundleGetInfoString</key>
     <string>gPodder @VERSION@ @COPYRIGHT@</string>
     <key>CFBundleIdentifier</key>

misc/bundle/launcher.py

@@ -1,76 +1,14 @@
 import os
-import os.path
 import platform
 import re
 import runpy
-import subprocess
 import sys
-import time
-import traceback
-from os.path import dirname, expanduser, join
-from subprocess import PIPE, CalledProcessError, Popen
+from os.path import basename, dirname, join
 
 
-class MakeCertPem:
-    """ create openssl cert bundle from system certificates """
-
-    def __init__(self, openssl):
-        self.openssl = openssl
-
-    def is_valid_cert(self, cert):
-        """ check if cert is valid according to openssl"""
-        cmd = [self.openssl, "x509", "-inform", "pem", "-checkend", "0", "-noout"]
-        # print("D: is_valid_cert %r" % cmd)
-        proc = Popen(cmd, stdin=PIPE, stdout=PIPE, stderr=PIPE)
-        stdout, stderr = proc.communicate(cert)
-        # print("out: %s; err:%s; ret:%i" % (stdout, stderr, proc.returncode))
-        return proc.returncode == 0
-
-    def get_certs(self):
-        """ extract System's certificates then filter them by validity
-            and return a list of text of valid certs
-        """
-        cmd = ["security", "find-certificate", "-a", "-p",
-               "/System/Library/Keychains/SystemRootCertificates.keychain"]
-        cert_re = re.compile(b"^-----BEGIN CERTIFICATE-----$" +
-                             b".+?" +
-                             b"^-----END CERTIFICATE-----$", re.M | re.S)
-        try:
-            certs_str = subprocess.check_output(cmd)
-            all_certs = cert_re.findall(certs_str)
-            print("I: extracted %i certificates" % len(all_certs))
-            valid_certs = [cert for cert in all_certs
-                           if self.is_valid_cert(cert)]
-            print("I: of which %i are valid certificates" % len(valid_certs))
-            return valid_certs
-        except OSError:
-            print("E: extracting certificates using %r" % cmd)
-            traceback.print_exc()
-        except CalledProcessError as err:
-            print(("E: extracting certificates using %r, exit=%i" %
-                  (cmd, err.returncode)))
-
-    @staticmethod
-    def write_certs(certs, dest):
-        """ write concatenated certs to dest """
-        with open(dest, "wb") as output:
-            output.write(b"\n".join(certs))
-
-    def regen(self, dest):
-        """ main program """
-        print("I: make_cert_pem %s %s" % (self.openssl, dest))
-        certs = self.get_certs()
-        if certs is None:
-            print("E: no certificate extracted")
-            return -1
-        else:
-            self.write_certs(certs, dest)
-            print("I: updated %s with %i certificates" % (dest, len(certs)))
-            return 0
-
 # print("launcher.py sys.argv=", sys.argv)
 bundlepath = sys.argv.pop(0)
-app = os.path.basename(sys.argv[0])
+app = basename(sys.argv[0])
 
 bundle_contents = join(bundlepath, 'Contents')
 bundle_res = join(bundle_contents, 'Resources')
@@ -107,70 +45,18 @@ def regen(self, dest):
 sys.path.append(bundle_res)
 print('System Path:\n','\n'.join(sys.path))
 
-# see https://gpodder.github.io/docs/user-manual.html#gpodder-home-folder-and-download-location
-# To override gPodder home and/or download directory:
-# 1. uncomment (remove the pound sign and space) at the begining of the relevant line
-# 2. replace ~/gPodderData or ~/gPodderDownloads with the path you want for your gPodder home
-#    (you can move the original folder in the Finder first,
-#     then drag and drop to the launcher.py in TextEdit to ensure the correct path is set)
-# uncomment the following line to override gPodder home
-# os.environ['GPODDER_HOME'] = expanduser('~/gPodderData')
-# uncomment the following line to override gPodder download directory
-# os.environ['GPODDER_DOWNLOAD_DIR'] = expanduser('~/gPodderDownloads')
-
 for k, v in os.environ.items():
   print("%s=%s" % (k,v))
 
-def gpodder_home():
-    # don't inadvertently create the new gPodder home,
-    # it would be prefered to the old one
-    default_path = join(os.environ['HOME'], 'Library', 'Application Support', 'gPodder')
-    cands = [
-        os.environ.get('GPODDER_HOME'),
-        default_path,
-        join(os.environ['HOME'], 'gPodder'),
-    ]
-    for cand in cands:
-        if cand and os.path.exists(cand):
-            return cand
-    return default_path
-
-
-gphome = gpodder_home()
-os.makedirs(join(gphome, 'openssl'), exist_ok=True)
-# generate cert.extracted.pem
-cert_gen = join(gphome, 'openssl', 'cert.extracted.pem')
-cert_pem = join(gphome, 'openssl', 'cert.pem')
-regen = False
-if not os.path.isfile(cert_gen):
-    regen = True
-else:
-    last_modified = os.stat(cert_gen).st_mtime
-    regen = last_modified < time.time() - 3600 * 7
-
-if regen:
-    print('(Re)generating', cert_pem)
-    openssl = join(bundle_bin, 'openssl')
-    MakeCertPem(openssl).regen(cert_gen)
-else:
-    print('No regenerating', cert_gen, 'it\'s fresh enough')
-
-# and link to it by default. Users may want to point cert.pem to MacPorts
-# /opt/local/etc/openssl/cert.pem, for instance.
-if not os.path.exists(cert_pem):
-    os.symlink(os.path.basename(cert_gen), cert_pem)
-#Set path to CA files
-os.environ['SSL_CERT_FILE'] = cert_pem
+python_exe = join(bundle_contents, 'MacOS', 'python3')
 
 if app == 'run-python':
-    python_exe = join(bundle_contents, 'MacOS', 'python3')
     # executable is repeated as argv[0].
     # Old sys.argv[0] points to Contents/MacOS so must be removed
     args = [python_exe] + sys.argv[1:]
     # print("running", args)
     os.execv(python_exe, args)
 elif app == 'run-pip':
-    python_exe = join(bundle_contents, 'MacOS', 'python3')
     pip = join(bundle_contents, 'Resources', 'bin', 'pip3')
     # executable is repeated as argv[0].
     # Old sys.argv[0] points to Contents/MacOS so must be removed