Initial commit

Author: lucydodo

.github/dependabot.yml

@@ -0,0 +1,10 @@
+version: 2
+updates:
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+  - package-ecosystem: "pip"
+    directory: "/"
+    schedule:
+      interval: "weekly"

.github/scripts/README.md

@@ -0,0 +1,2 @@
+This script checks whether the package version of the formulae we're defining <br>
+has been updated, and if so, notifies the maintainer by creating a Github Issue.

.github/scripts/check-update.py

@@ -0,0 +1,151 @@
+# FileName: check-update.py
+# SPDX-FileCopyrightText: (C) 2023 SeongTae Jeong <[email protected]>
+# SPDX-License-Identifier: BSD-2-Clause
+
+"""
+This script checks whether the package version of the formulae we're defining
+has been updated, and if so, notifies the maintainer by creating a Github Issue.
+"""
+
+import os
+import re
+import requests
+import subprocess
+from enum import Enum
+
+
+class IssueVersionStatus(Enum):
+    NONE = 0
+    EXISTS = 1
+    EXISTS_BUT_OUTDATED = 2
+
+
+class Package(Enum):
+    OPENSSL = "OpenSSL"
+    QT = "Qt"
+    SQLCIPHER = "SQLCipher"
+    SQLITE = "SQLite"
+
+
+def generate_issue(package_name, current_version, latest_version):
+    def check_if_issue_exists():
+        issue = subprocess.check_output(
+            'gh issue list --label "{}" --limit 1 --state "open" --repo "{}"'.format(
+                package_name.value, os.environ["GITHUB_REPOSITORY"]
+            ),
+            shell=True,
+            text=True,
+        )
+
+        if len(issue) == 0:
+            return (IssueVersionStatus.NONE, None)
+
+        issue_number = issue.split("\t")[0]
+        version_from_issue = "".join(issue.split("\t")[2].split()[-1:])
+        if latest_version == version_from_issue:
+            return (IssueVersionStatus.EXISTS, issue_number)
+        else:
+            return (IssueVersionStatus.EXISTS_BUT_OUTDATED, issue_number)
+
+    issue_info = check_if_issue_exists()
+    # Abort function execution because there is already an issue
+    if issue_info[0] == IssueVersionStatus.EXISTS:
+        return
+    # If already have an issue, but the version reported in that issue is already out of date
+    elif issue_info[0] == IssueVersionStatus.EXISTS_BUT_OUTDATED:
+        os.system(
+            'gh issue close {} --repo "{}"'.format(
+                issue_info[1], os.environ["GITHUB_REPOSITORY"]
+            )
+        )
+    os.system(
+        """
+                gh issue create \
+                --assignee "{}" \
+                --body "{} has been updated from {} to {}." \
+                --label "{}" \
+                --title "{} has been updated to {}" \
+                --repo "{}"
+                """.format(
+            os.environ["ASSIGNEES"],
+            package_name.value,
+            current_version,
+            latest_version,
+            package_name.value,
+            package_name.value,
+            latest_version,
+            os.environ["GITHUB_REPOSITORY"],
+        )
+    )
+
+
+def get_version_from_formula(formula_name):
+    filepath = os.path.join(os.getcwd(), "Formula", formula_name + ".rb")
+    with open(filepath, "r") as formula:
+        formula_content = formula.read()
+        version = re.search(r'version "(.*?)"', formula_content).group(1)
+
+    return version
+
+
+def check_sqlcipher_version():
+    current_version = get_version_from_formula("sqlb-sqlcipher")
+
+    release_list = subprocess.check_output(
+        "gh release list --repo sqlcipher/sqlcipher --limit 1", shell=True, text=True
+    )
+    latest_version = release_list.split()[0][1:]
+
+    if current_version != latest_version:
+        return (Package.SQLCIPHER, current_version, latest_version)
+
+
+def check_sqlite_version():
+    current_version = get_version_from_formula("sqlb-sqlite")
+
+    response = requests.get("https://sqlite.org/index.html")
+    latest_version = (
+        re.search(r"href=.*?releaselog/v?(\d+(?:[._]\d+)+)\.html", response.text)
+        .group(1)
+        .replace("_", ".")
+    )
+
+    if current_version != latest_version:
+        return (Package.SQLITE, current_version, latest_version)
+
+
+def check_openssl_version():
+    current_version = get_version_from_formula("sqlb-openssl@3")
+
+    response = requests.get("https://www.openssl.org/source/")
+    latest_version = re.findall(
+        r"href=.*?openssl[._-]v?(\d+(?:\.\d+)+)\.t", response.text
+    )[-1]
+
+    if current_version != latest_version:
+        return (Package.OPENSSL, current_version, latest_version)
+
+
+def check_qt_version():
+    current_version = get_version_from_formula("sqlb-qt@5")
+
+    response = requests.get(
+        "https://raw.githubusercontent.com/Homebrew/homebrew-core/master/Formula/q/qt%405.rb"
+    )
+    latest_version = re.search(r'url "(.*?)"', response.text).group(1).split("/")[-3]
+
+    if current_version != latest_version:
+        return (Package.QT, current_version, latest_version)
+
+
+if __name__ == "__main__":
+    functions = [
+        check_sqlite_version,
+        check_sqlcipher_version,
+        check_openssl_version,
+        check_qt_version,
+    ]
+    for function in functions:
+        response = function()
+        if response is not None:
+            generate_issue(response[0], response[1], response[2])

.github/scripts/requirements.txt

@@ -0,0 +1,5 @@
+certifi==2024.6.2
+charset-normalizer==3.3.2
+idna==3.7
+requests==2.32.3
+urllib3==2.2.1

.github/workflows/check-for-packages-updates.yml

@@ -0,0 +1,29 @@
+name: Check for packages updates
+
+on:
+  schedule:
+    - cron: '0 0 * * 0' # Every Sunday at 00:00 UTC
+  workflow_dispatch:
+
+jobs:
+  check:
+    name: Check for packages updates
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          cache: 'pip'
+          python-version: '3.11.5'
+
+      - name: Install dependencies
+        run: pip install -r ./.github/scripts/requirements.txt
+      
+      - name: Run the script
+        env:
+          ASSIGNEES: ${{ vars.ASSIGNEES }}
+          GITHUB_REPO: ${{ github.repository }}
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        run: python3 ./.github/scripts/check-update.py

.gitignore

@@ -0,0 +1 @@
+venv/

CODEOWNERS

@@ -0,0 +1 @@
+* @lucydodo

Formula/[email protected]

@@ -0,0 +1,128 @@
+# FIXME: This formula conflicts with the Homebrew official 'openssl@3' formula. (https://github.com/sqlitebrowser/homebrew-tap/issues/1)
+# Until fixed, you can install this formula before running 'brew unlink openssl@3'
+class SqlbOpensslAT3 < Formula
+  desc "Cryptography and SSL/TLS Toolkit"
+  homepage "https://openssl.org/"
+  version "3.3.1"
+  url "https://github.com/openssl/openssl/releases/download/openssl-#{version}/openssl-#{version}.tar.gz"
+  mirror "https://www.openssl.org/source/openssl-#{version}.tar.gz"
+  mirror "http://fresh-center.net/linux/misc/openssl-#{version}.tar.gz"
+  sha256 "777cd596284c883375a2a7a11bf5d2786fc5413255efab20c50d6ffe6d020b7e"
+  license "Apache-2.0"
+
+  bottle do
+    root_url "https://nightlies.sqlitebrowser.org/homebrew_bottles"
+    rebuild 1
+    sha256 arm64_sonoma: "bcb2e8ee2006e8e107c2b25058b639f785e249a7096a9c4f527ad0bc798ec7dc"
+  end
+
+  livecheck do
+    url "https://www.openssl.org/source/"
+    regex(/href=.*?openssl[._-]v?(\d+(?:\.\d+)+)\.t/i)
+  end
+
+  depends_on arch: :arm64
+  depends_on "ca-certificates"
+
+  link_overwrite "bin/c_rehash", "bin/openssl", "include/openssl/*"
+  link_overwrite "lib/libcrypto*", "lib/libssl*"
+  link_overwrite "lib/pkgconfig/libcrypto.pc", "lib/pkgconfig/libssl.pc", "lib/pkgconfig/openssl.pc"
+  link_overwrite "share/doc/openssl/*", "share/man/man*/*ssl"
+
+  # SSLv2 died with 1.1.0, so no-ssl2 no longer required.
+  # SSLv3 & zlib are off by default with 1.1.0 but this may not
+  # be obvious to everyone, so explicitly state it for now to
+  # help debug inevitable breakage.
+  def configure_args
+    args = %W[
+      enable-ec_nistp_64_gcc_128
+      no-asm
+      no-ssl3
+      no-ssl3-method
+      no-zlib
+    ]
+  end
+
+  def install
+    # Determine the minimum macOS version.
+    # Match the required version of the DB Browser for SQLite app.
+    ENV["MACOSX_DEPLOYMENT_TARGET"] = "10.13"
+    ENV.append "CPPFLAGS", "-mmacosx-version-min=10.13"
+    ENV.append "LDFLAGS", "-mmacosx-version-min=10.13"
+
+    # This could interfere with how we expect OpenSSL to build.
+    ENV.delete("OPENSSL_LOCAL_CONFIG_DIR")
+
+    # This ensures where Homebrew's Perl is needed the Cellar path isn't
+    # hardcoded into OpenSSL's scripts, causing them to break every Perl update.
+    # Whilst our env points to opt_bin, by default OpenSSL resolves the symlink.
+    ENV["PERL"] = Formula["perl"].opt_bin/"perl" if which("perl") == Formula["perl"].opt_bin/"perl"
+
+    arch_args = []
+    arch_args << "darwin64-x86_64-cc"
+    arch_args += %W[--prefix=#{prefix}/darwin64-x86_64-cc]
+    arch_args += %W[--openssldir=#{openssldir}/darwin64-x86_64-cc]
+    arch_args << "--libdir=#{prefix}/darwin64-x86_64-cc/lib"
+    ENV.append "CFLAGS", "-arch x86_64"
+
+    system "perl", "./Configure", *(configure_args + arch_args)
+    system "arch -x86_64 make"
+    system "make", "install", "MANDIR=#{prefix}/darwin64-x86_64-cc/share/man", "MANSUFFIX=ssl"
+    # AF_ALG support isn't always enabled (e.g. some containers), which breaks the tests.
+    # AF_ALG is a kernel feature and failures are unlikely to be issues with the formula.
+    # system "CFLAGS=\"-arch x86_64\" arch -x86_64 make test TESTS=-test_afalg"
+
+    arch_args = []
+    arch_args << "darwin64-arm64-cc"
+    arch_args += %W[--prefix=#{prefix} --openssldir=#{openssldir} --libdir=lib]
+
+    openssldir.mkpath
+    system "make clean"
+    system "perl", "./Configure", *(configure_args + arch_args)
+    system "make"
+    system "make", "install", "MANDIR=#{man}", "MANSUFFIX=ssl"
+    # # AF_ALG support isn't always enabled (e.g. some containers), which breaks the tests.
+    # # AF_ALG is a kernel feature and failures are unlikely to be issues with the formula.
+    # system "make", "test", "TESTS=-test_afalg"
+
+    system "lipo", "-create", "-output", "#{lib}/libcrypto.3.dylib", "#{lib}/libcrypto.3.dylib", "#{prefix}/darwin64-x86_64-cc/lib/libcrypto.3.dylib"
+    system "lipo", "-create", "-output", "#{lib}/libcrypto.a", "#{lib}/libcrypto.a", "#{prefix}/darwin64-x86_64-cc/lib/libcrypto.a"
+    rm "#{lib}/libcrypto.dylib"
+    ln_s "#{lib}/libcrypto.3.dylib", "#{lib}/libcrypto.dylib"
+  end
+
+  def openssldir
+    etc/"sqlb-openssl@3"
+  end
+
+  def post_install
+    rm_f openssldir/"cert.pem"
+    openssldir.install_symlink Formula["ca-certificates"].pkgetc/"cert.pem"
+  end
+
+  def caveats
+    <<~EOS
+      A CA file has been bootstrapped using certificates from the system
+      keychain. To add additional certificates, place .pem files in
+        #{openssldir}/certs
+
+      and run
+        #{opt_bin}/c_rehash
+    EOS
+  end
+
+  test do
+    # Make sure the necessary .cnf file exists, otherwise OpenSSL gets moody.
+    assert_predicate pkgetc/"openssl.cnf", :exist?,
+            "OpenSSL requires the .cnf file for some functionality"
+
+    # Check OpenSSL itself functions as expected.
+    (testpath/"testfile.txt").write("This is a test file")
+    expected_checksum = "e2d0fe1585a63ec6009c8016ff8dda8b17719a637405a4e23c0ff81339148249"
+    system bin/"openssl", "dgst", "-sha256", "-out", "checksum.txt", "testfile.txt"
+    open("checksum.txt") do |f|
+      checksum = f.read(100).split("=").last.strip
+      assert_equal checksum, expected_checksum
+    end
+  end
+end