mirror of
https://github.com/nodejs/node.git
synced 2025-04-28 05:25:19 +00:00
ba06c5c509
Signed-off-by: RafaelGSS <rafael.nunu@hotmail.com> Co-Authored-By: Santiago Gimeno <santiago.gimeno@gmail.com> PR-URL: https://github.com/nodejs/node/pull/46297 Reviewed-By: Santiago Gimeno <santiago.gimeno@gmail.com> Reviewed-By: Jan Krems <jan.krems@gmail.com>
134 lines
4.9 KiB
JavaScript
134 lines
4.9 KiB
JavaScript
'use strict';
|
|
|
|
const common = require('../common');
|
|
const fixtures = require('../common/fixtures');
|
|
const tmpdir = require('../common/tmpdir');
|
|
const { inspect } = require('util');
|
|
|
|
const { readFileSync, copyFileSync } = require('fs');
|
|
const {
|
|
spawnSyncAndExitWithoutError,
|
|
} = require('../common/child_process');
|
|
|
|
function skipIfSingleExecutableIsNotSupported() {
|
|
if (!process.config.variables.single_executable_application)
|
|
common.skip('Single Executable Application support has been disabled.');
|
|
|
|
if (!['darwin', 'win32', 'linux'].includes(process.platform))
|
|
common.skip(`Unsupported platform ${process.platform}.`);
|
|
|
|
if (process.platform === 'linux' && process.config.variables.is_debug === 1)
|
|
common.skip('Running the resultant binary fails with `Couldn\'t read target executable"`.');
|
|
|
|
if (process.config.variables.node_shared)
|
|
common.skip('Running the resultant binary fails with ' +
|
|
'`/home/iojs/node-tmp/.tmp.2366/sea: error while loading shared libraries: ' +
|
|
'libnode.so.112: cannot open shared object file: No such file or directory`.');
|
|
|
|
if (process.config.variables.icu_gyp_path === 'tools/icu/icu-system.gyp')
|
|
common.skip('Running the resultant binary fails with ' +
|
|
'`/home/iojs/node-tmp/.tmp.2379/sea: error while loading shared libraries: ' +
|
|
'libicui18n.so.71: cannot open shared object file: No such file or directory`.');
|
|
|
|
if (!process.config.variables.node_use_openssl || process.config.variables.node_shared_openssl)
|
|
common.skip('Running the resultant binary fails with `Node.js is not compiled with OpenSSL crypto support`.');
|
|
|
|
if (process.config.variables.want_separate_host_toolset !== 0)
|
|
common.skip('Running the resultant binary fails with `Segmentation fault (core dumped)`.');
|
|
|
|
if (process.platform === 'linux') {
|
|
const osReleaseText = readFileSync('/etc/os-release', { encoding: 'utf-8' });
|
|
const isAlpine = /^NAME="Alpine Linux"/m.test(osReleaseText);
|
|
if (isAlpine) common.skip('Alpine Linux is not supported.');
|
|
|
|
if (process.arch === 's390x') {
|
|
common.skip('On s390x, postject fails with `memory access out of bounds`.');
|
|
}
|
|
}
|
|
|
|
if (process.config.variables.ubsan) {
|
|
common.skip('UndefinedBehavior Sanitizer is not supported');
|
|
}
|
|
|
|
tmpdir.refresh();
|
|
|
|
// The SEA tests involve making a copy of the executable and writing some fixtures
|
|
// to the tmpdir. To be safe, ensure that at least 120MB disk space is available.
|
|
if (!tmpdir.hasEnoughSpace(120 * 1024 * 1024)) {
|
|
common.skip('Available disk space < 120MB');
|
|
}
|
|
}
|
|
|
|
function generateSEA(targetExecutable, sourceExecutable, seaBlob, verifyWorkflow = false) {
|
|
try {
|
|
copyFileSync(sourceExecutable, targetExecutable);
|
|
} catch (e) {
|
|
const message = `Cannot copy ${sourceExecutable} to ${targetExecutable}: ${inspect(e)}`;
|
|
if (verifyWorkflow) {
|
|
throw new Error(message);
|
|
}
|
|
common.skip(message);
|
|
}
|
|
console.log(`Copied ${sourceExecutable} to ${targetExecutable}`);
|
|
|
|
const postjectFile = fixtures.path('postject-copy', 'node_modules', 'postject', 'dist', 'cli.js');
|
|
try {
|
|
spawnSyncAndExitWithoutError(process.execPath, [
|
|
postjectFile,
|
|
targetExecutable,
|
|
'NODE_SEA_BLOB',
|
|
seaBlob,
|
|
'--sentinel-fuse', 'NODE_SEA_FUSE_fce680ab2cc467b6e072b8b5df1996b2',
|
|
...process.platform === 'darwin' ? [ '--macho-segment-name', 'NODE_SEA' ] : [],
|
|
]);
|
|
} catch (e) {
|
|
const message = `Cannot inject ${seaBlob} into ${targetExecutable}: ${inspect(e)}`;
|
|
if (verifyWorkflow) {
|
|
throw new Error(message);
|
|
}
|
|
common.skip(message);
|
|
}
|
|
console.log(`Injected ${seaBlob} into ${targetExecutable}`);
|
|
|
|
if (process.platform === 'darwin') {
|
|
try {
|
|
spawnSyncAndExitWithoutError('codesign', [ '--sign', '-', targetExecutable ], {});
|
|
spawnSyncAndExitWithoutError('codesign', [ '--verify', targetExecutable ], {});
|
|
} catch (e) {
|
|
const message = `Cannot sign ${targetExecutable}: ${inspect(e)}`;
|
|
if (verifyWorkflow) {
|
|
throw new Error(message);
|
|
}
|
|
common.skip(message);
|
|
}
|
|
console.log(`Signed ${targetExecutable}`);
|
|
} else if (process.platform === 'win32') {
|
|
try {
|
|
spawnSyncAndExitWithoutError('where', [ 'signtool' ], {});
|
|
} catch (e) {
|
|
const message = `Cannot find signtool: ${inspect(e)}`;
|
|
if (verifyWorkflow) {
|
|
throw new Error(message);
|
|
}
|
|
common.skip(message);
|
|
}
|
|
let stderr;
|
|
try {
|
|
({ stderr } = spawnSyncAndExitWithoutError('signtool', [ 'sign', '/fd', 'SHA256', targetExecutable ], {}));
|
|
spawnSyncAndExitWithoutError('signtool', 'verify', '/pa', 'SHA256', targetExecutable, {});
|
|
} catch (e) {
|
|
const message = `Cannot sign ${targetExecutable}: ${inspect(e)}\n${stderr}`;
|
|
if (verifyWorkflow) {
|
|
throw new Error(message);
|
|
}
|
|
common.skip(message);
|
|
}
|
|
console.log(`Signed ${targetExecutable}`);
|
|
}
|
|
}
|
|
|
|
module.exports = {
|
|
skipIfSingleExecutableIsNotSupported,
|
|
generateSEA,
|
|
};
|