Página Principal Explorar Ajuda
Registe-se Iniciar Sessão
oscarleiva
/
energylink
1
0
Fork 0
Ficheiros Problemas 0 Pull Requests 0 Wiki
Ver Fonte

build: verifies the rpm packages signatures.

Closes #12370
Leonard Gram há 7 anos atrás
pai
332e59d314
commit
aefcb06ff8
2 ficheiros alterados com 22 adições e 0 exclusões
Visão Dividida Mostrar Estatísticas Diff
  1. 5 0
      .circleci/config.yml
  2. 17 0
      scripts/build/verify_signed_packages.sh

+ 5 - 0
.circleci/config.yml
Ver Ficheiro 

@@ -147,6 +147,11 @@ jobs:
 
       - run:
 
           name: sign packages
 
           command: './scripts/build/sign_packages.sh'
 
+      - run:
 
+          name: verify signed packages
 
+          command: |
 
+            curl https://grafanarel.s3.amazonaws.com/RPM-GPG-KEY-grafana > ~/.rpmdb/pubkeys/grafana.key
 
+            ./scripts/build/verify_signed_packages.sh dist/*.rpm
 
       - run:
 
           name: sha-sum packages
 
           command: 'go run build.go sha-dist'

+ 17 - 0
scripts/build/verify_signed_packages.sh
Ver Ficheiro 

@@ -0,0 +1,17 @@
 
+#!/bin/bash
 
+_files=$*
 
+
 
+ALL_SIGNED=0
 
+
 
+for file in $_files; do
 
+  rpm -K "$file" | grep "pgp.*OK" -q
 
+  if [[ $? != 0 ]]; then
 
+    ALL_SIGNED=1
 
+    echo $file NOT SIGNED
 
+  else
 
+    echo $file OK
 
+  fi
 
+done
 
+
 
+
 
+exit $ALL_SIGNED