chromium/build/android/gyp/finalize_apk.py


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61

#!/usr/bin/env python
#
# Copyright 2013 The Chromium Authors. All rights reserved.
# Use of this source code is governed by a BSD-style license that can be
# found in the LICENSE file.
"""Signs and aligns an APK."""

import argparse
import shutil
import subprocess
import tempfile


def FinalizeApk(apksigner_path, zipalign_path, unsigned_apk_path,
                final_apk_path, key_path, key_passwd, key_name):
  # Use a tempfile so that Ctrl-C does not leave the file with a fresh mtime
  # and a corrupted state.
  with tempfile.NamedTemporaryFile() as staging_file:
    # v2 signing requires that zipalign happen first.
    subprocess.check_output([
        zipalign_path, '-p', '-f', '4',
        unsigned_apk_path, staging_file.name])
    subprocess.check_output([
        apksigner_path, 'sign',
        '--in', staging_file.name,
        '--out', staging_file.name,
        '--ks', key_path,
        '--ks-key-alias', key_name,
        '--ks-pass', 'pass:' + key_passwd,
        # Force SHA-1 (makes signing faster; insecure is fine for local builds).
        '--min-sdk-version', '1',
    ])
    shutil.move(staging_file.name, final_apk_path)
    staging_file.delete = False


def main():
  parser = argparse.ArgumentParser()

  parser.add_argument('--apksigner-path', required=True,
                      help='Path to the apksigner executable.')
  parser.add_argument('--zipalign-path', required=True,
                      help='Path to the zipalign executable.')
  parser.add_argument('--unsigned-apk-path', required=True,
                      help='Path to input unsigned APK.')
  parser.add_argument('--final-apk-path', required=True,
                      help='Path to output signed and aligned APK.')
  parser.add_argument('--key-path', required=True,
                      help='Path to keystore for signing.')
  parser.add_argument('--key-passwd', required=True,
                      help='Keystore password')
  parser.add_argument('--key-name', required=True,
                      help='Keystore name')
  options = parser.parse_args()
  FinalizeApk(options.apksigner_path, options.zipalign_path,
              options.unsigned_apk_path, options.final_apk_path,
              options.key_path, options.key_passwd, options.key_name)


if __name__ == '__main__':
  main()