Optionally sign the squashfs files with gpg

A new option -g <keyid> is added to set the key id. The squashfs files are only signed if
this option is set.
This commit is contained in:
Thomas Bächler 2016-02-13 01:08:50 +01:00 committed by Gerardo Exequiel Pozzi
parent 1a59eb3792
commit b644d3e923

View File

@ -18,6 +18,7 @@ work_dir="work"
out_dir="out" out_dir="out"
sfs_mode="sfs" sfs_mode="sfs"
sfs_comp="xz" sfs_comp="xz"
gpg_key=
# Show an INFO message # Show an INFO message
# $1: message string # $1: message string
@ -253,6 +254,14 @@ _mkchecksum () {
_msg_info "Done!" _msg_info "Done!"
} }
_mksignature () {
_msg_info "Creating signature file..."
cd "${work_dir}/iso/${install_dir}/${arch}"
gpg --detach-sign --default-key ${gpg_key} airootfs.sfs
cd ${OLDPWD}
_msg_info "Done!"
}
command_pkglist () { command_pkglist () {
_show_config pkglist _show_config pkglist
@ -319,6 +328,7 @@ command_prepare () {
_mkairootfs_img _mkairootfs_img
fi fi
_mkchecksum _mkchecksum
[[ ${gpg_key} ]] && _mksignature
} }
# Install packages on airootfs. # Install packages on airootfs.
@ -355,7 +365,7 @@ if [[ ${EUID} -ne 0 ]]; then
_msg_error "This script must be run as root." 1 _msg_error "This script must be run as root." 1
fi fi
while getopts 'p:r:C:L:P:A:D:w:o:s:c:vh' arg; do while getopts 'p:r:C:L:P:A:D:w:o:s:c:g:vh' arg; do
case "${arg}" in case "${arg}" in
p) pkg_list="${pkg_list} ${OPTARG}" ;; p) pkg_list="${pkg_list} ${OPTARG}" ;;
r) run_cmd="${OPTARG}" ;; r) run_cmd="${OPTARG}" ;;
@ -368,6 +378,7 @@ while getopts 'p:r:C:L:P:A:D:w:o:s:c:vh' arg; do
o) out_dir="${OPTARG}" ;; o) out_dir="${OPTARG}" ;;
s) sfs_mode="${OPTARG}" ;; s) sfs_mode="${OPTARG}" ;;
c) sfs_comp="${OPTARG}" ;; c) sfs_comp="${OPTARG}" ;;
g) gpg_key="${OPTARG}" ;;
v) quiet="n" ;; v) quiet="n" ;;
h|?) _usage 0 ;; h|?) _usage 0 ;;
*) *)