diff options
author | Daniel Moody <daniel.moody@mongodb.com> | 2022-04-18 21:14:29 +0000 |
---|---|---|
committer | Evergreen Agent <no-reply@evergreen.mongodb.com> | 2022-04-21 21:48:52 +0000 |
commit | f4f4f60996502bce2bdc707aff2de6f9597f2036 (patch) | |
tree | 48fe26a266f01bdc1f60e4776e21effe1e45851e | |
parent | 15c0712952c356cb711c13a42cb3bca8617d4ebc (diff) | |
download | mongo-f4f4f60996502bce2bdc707aff2de6f9597f2036.tar.gz |
SERVER-64332 added macos binary signing to push task
(cherry picked from commit 8aee4d35ca04dce4d045dc366fc47bfd0d4c4a5e)
(cherry picked from commit e9ef5ac764ff28856c7808b99fe8266e5f0072c8)
-rw-r--r-- | etc/evergreen.yml | 14 |
1 files changed, 14 insertions, 0 deletions
diff --git a/etc/evergreen.yml b/etc/evergreen.yml index ffe117431ad..ab103fcce3f 100644 --- a/etc/evergreen.yml +++ b/etc/evergreen.yml @@ -607,6 +607,7 @@ functions: export NOTARY_TOKEN=${signing_auth_token_42} export BARQUE_USERNAME=${barque_user} export BARQUE_API_KEY=${barque_api_key} + export MACOS_NOTARY_TOKEN=${macos_notarization_secret} EOF echo "${signing_auth_token_42}" > signing_auth_token @@ -6720,6 +6721,19 @@ tasks: set -o errexit set -o verbose + if [[ "${push_name}" == "macos"* ]]; then + curl https://macos-notary-1628249594.s3.amazonaws.com/releases/client/v3.3.0/linux_amd64.zip -o linux_amd64.zip + unzip linux_amd64.zip + chmod +x ./linux_amd64/macnotary + bins=("mongo-binaries.tgz" "mongo-shell.tgz" "mongo-cryptd.tgz" "mh.tgz") + for archive in ${bins[@]}; do + TEMP_ARCHIVE="$(mktemp -p $PWD)" + mv "$archive" "$TEMP_ARCHIVE" + ./linux_amd64/macnotary -f "$TEMP_ARCHIVE" -m notarizeAndSign -u https://dev.macos-notary.build.10gen.cc/api -k server -s ${MACOS_NOTARY_TOKEN} -b server.mongodb.com -o "$archive" + rm -f "$TEMP_ARCHIVE" + done + fi + mv mongo-binaries.tgz mongodb-${push_name}-${push_arch}-${suffix}.${ext|tgz} mv mongo-shell.tgz mongodb-shell-${push_name}-${push_arch}-${suffix}.${ext|tgz} mv mongo-cryptd.tgz mongodb-cryptd-${push_name}-${push_arch}-${suffix}.${ext|tgz} || true |