#!/usr/bin/env bash # Build the Archipelago companion debug APK and stage it as the served download # at neode-ui/public/packages/archipelago-companion.apk (a plain APK, so a phone # can install it straight from the link — no unzip step). # # Run manually, or automatically via the pre-push hook (.githooks/pre-push). # # Hardened (2026-06-26) so a broken APK can never ship again: # 1. Aborts on stray resource dirs whose names contain spaces (these break a # clean build with "Invalid resource directory name"). Empty ones — junk # left by some icon-export tools — are auto-removed; non-empty ones error. # 2. Always a CLEAN build (incremental builds masked the bad resource dirs). # 3. Forces v1 + v2 + v3 signing with zipalign + apksigner. AGP's # `enableV1Signing = true` flag is silently ignored for minSdk>=24, which # shipped a v2-only APK that some OEM installers reject ("App not installed"). # 4. VERIFIES all three schemes and ABORTS if any is missing — no silent ship. set -euo pipefail ROOT="$(git rev-parse --show-toplevel)" cd "$ROOT" JAVA="${JAVA_HOME:-/opt/homebrew/opt/openjdk@17}" SDK="${ANDROID_HOME:-$HOME/Library/Android/sdk}" if [ ! -x "$JAVA/bin/java" ] || [ ! -d "$SDK" ]; then echo "publish-companion-apk: JDK or Android SDK not found — skipping." >&2 echo " (set JAVA_HOME and ANDROID_HOME to build the companion APK)" >&2 exit 0 fi export JAVA_HOME="$JAVA" export PATH="$JAVA/bin:$PATH" RES="Android/app/src/main/res" APK="Android/app/build/outputs/apk/debug/app-debug.apk" SIGNED="Android/app/build/outputs/apk/debug/app-debug-signed.apk" DEST="neode-ui/public/packages/archipelago-companion.apk" OLD_ZIP="neode-ui/public/packages/archipelago-companion.apk.zip" KS="Android/app/debug.keystore" # 1. Guard against resource dirs with spaces (Android forbids them; a clean # build aborts on them). Empty ones are removed; non-empty ones are fatal. while IFS= read -r d; do [ -n "$d" ] || continue if [ -n "$(ls -A "$d" 2>/dev/null)" ]; then echo "publish-companion-apk: ERROR — resource dir with a space is not empty:" >&2 echo " $d" >&2 echo " Rename it (Android resource dir names cannot contain spaces)." >&2 exit 1 fi rmdir "$d" && echo "publish-companion-apk: removed stray empty resource dir: $d" >&2 done < <(find "$RES" -type d -name '* *' 2>/dev/null) # 2. Clean build. echo "publish-companion-apk: clean build of debug APK…" >&2 ( cd Android && ./gradlew -q --console=plain :app:clean :app:assembleDebug ) [ -f "$APK" ] || { echo "publish-companion-apk: ERROR — APK not produced at $APK" >&2; exit 1; } # 3. Force v1 + v2 + v3 signing (AGP's enableV1Signing flag is ignored here). BT="$(ls -d "$SDK"/build-tools/*/ | sort -V | tail -1)" ZIPALIGN="${BT}zipalign"; APKSIGNER="${BT}apksigner" [ -x "$ZIPALIGN" ] && [ -x "$APKSIGNER" ] || { echo "publish-companion-apk: ERROR — zipalign/apksigner not found under $BT" >&2; exit 1; } [ -f "$KS" ] || { echo "publish-companion-apk: ERROR — keystore missing at $KS" >&2; exit 1; } echo "publish-companion-apk: zipalign + sign (v1+v2+v3)…" >&2 "$ZIPALIGN" -p -f 4 "$APK" "$SIGNED" "$APKSIGNER" sign \ --ks "$KS" --ks-pass pass:android \ --ks-key-alias androiddebugkey --key-pass pass:android \ --v1-signing-enabled true --v2-signing-enabled true --v3-signing-enabled true \ "$SIGNED" # 4. Verify all three schemes (min-sdk 21 forces the v1 path to be exercised). VERIFY="$("$APKSIGNER" verify -v --min-sdk-version 21 "$SIGNED" 2>&1)" for scheme in "v1 scheme" "v2 scheme" "v3 scheme"; do if ! printf '%s\n' "$VERIFY" | grep -iq "$scheme.*: true"; then echo "publish-companion-apk: ERROR — $scheme NOT present after signing. Aborting." >&2 printf '%s\n' "$VERIFY" | grep -iE "scheme" >&2 exit 1 fi done echo "publish-companion-apk: verified v1 + v2 + v3 signatures." >&2 # 5. Publish. mkdir -p "$(dirname "$DEST")" cp "$SIGNED" "$DEST" # Drop the legacy zipped artifact so the served download is the raw APK only. if [ -f "$OLD_ZIP" ]; then git rm -q --ignore-unmatch "$OLD_ZIP" 2>/dev/null || rm -f "$OLD_ZIP" fi git add "$DEST" echo "publish-companion-apk: staged $DEST" >&2