Ophestra
673b648bd3
Wrapping fortify is slow, painful and error-prone. Start apps in-process instead. Signed-off-by: Ophestra <cat@gensokyo.uk>
20 lines
696 B
Bash
Executable File
20 lines
696 B
Bash
Executable File
#!/bin/sh -e
|
|
cd "$(dirname -- "$0")/.."
|
|
VERSION="${FORTIFY_VERSION:-untagged}"
|
|
pname="fortify-${VERSION}"
|
|
out="dist/${pname}"
|
|
|
|
mkdir -p "${out}"
|
|
cp -v "README.md" "dist/fsurc.default" "dist/install.sh" "${out}"
|
|
cp -rv "comp" "${out}"
|
|
|
|
go generate ./...
|
|
go build -trimpath -v -o "${out}/bin/" -ldflags "-s -w -buildid= -extldflags '-static'
|
|
-X git.gensokyo.uk/security/fortify/internal.version=${VERSION}
|
|
-X git.gensokyo.uk/security/fortify/internal.fsu=/usr/bin/fsu
|
|
-X main.fmain=/usr/bin/fortify
|
|
-X main.fpkg=/usr/bin/fpkg" ./...
|
|
|
|
rm -f "./${out}.tar.gz" && tar -C dist -czf "${out}.tar.gz" "${pname}"
|
|
rm -rf "./${out}"
|
|
(cd dist && sha512sum "${pname}.tar.gz" > "${pname}.tar.gz.sha512") |