Sha256: 428ec2c48c9c2a9e42c4a942a7a69f5eb4d65fdc76581eefaa139b176b212c02

Contents?: true

Size: 1.87 KB

Versions: 25

Compression:

Stored size: 1.87 KB

Contents

module Pkg::Util::Gpg
  class << self
    # Please note that this method is not used in determining what key is used
    # to sign the debian repos. That is defined in the freight config that
    # lives on our internal repo staging host. The debian conf/distribution
    # files that are generated with this repo use the default gpg key to
    # reflect that.
    def key
      fail "You need to set `gpg_key` in your build defaults." unless Pkg::Config.gpg_key && !Pkg::Config.gpg_key.empty?
      Pkg::Config.gpg_key
    end

    def keychain
      if @keychain.nil?
        @keychain = Pkg::Util::Tool.find_tool('keychain')
      else
        @keychain
      end
    end

    def load_keychain
      unless @keychain_loaded
        unless ENV['RPM_GPG_AGENT']
          kill_keychain
          start_keychain
        end
        @keychain_loaded = true
      end
    end

    def kill_keychain
      if keychain
        stdout, = Pkg::Util::Execution.capture3("#{keychain} -k mine")
        stdout
      end
    end

    def start_keychain
      if keychain
        keychain_output, = Pkg::Util::Execution.capture3("#{keychain} -q --agents gpg --eval #{key}")
        keychain_output.chomp!
        new_env = keychain_output.match(/GPG_AGENT_INFO=([^;]*)/)
        ENV["GPG_AGENT_INFO"] = new_env[1]
      else
        fail "Keychain is not installed, it is required to autosign using gpg."
      end
    end

    def sign_file(file)
      gpg ||= Pkg::Util::Tool.find_tool('gpg')

      if gpg
        if File.exist? "#{file}.asc"
          warn "Signature on #{file} exists, skipping..."
          return true
        end
        use_tty = "--no-tty --use-agent" if ENV['RPM_GPG_AGENT']
        stdout, = Pkg::Util::Execution.capture3("#{gpg} #{use_tty} --armor --detach-sign -u #{key} #{file}")
        stdout
      else
        fail "No gpg available. Cannot sign #{file}."
      end
    end
  end
end

Version data entries

25 entries across 25 versions & 1 rubygems

Version Path
packaging-0.116.0 lib/packaging/util/gpg.rb
packaging-0.115.0 lib/packaging/util/gpg.rb
packaging-0.114.0 lib/packaging/util/gpg.rb
packaging-0.113.0 lib/packaging/util/gpg.rb
packaging-0.112.0 lib/packaging/util/gpg.rb
packaging-0.111.0 lib/packaging/util/gpg.rb
packaging-0.110.1 lib/packaging/util/gpg.rb
packaging-0.110.0 lib/packaging/util/gpg.rb
packaging-0.109.7 lib/packaging/util/gpg.rb
packaging-0.109.6 lib/packaging/util/gpg.rb
packaging-0.109.5 lib/packaging/util/gpg.rb
packaging-0.109.4 lib/packaging/util/gpg.rb
packaging-0.109.3 lib/packaging/util/gpg.rb
packaging-0.109.2 lib/packaging/util/gpg.rb
packaging-0.109.1 lib/packaging/util/gpg.rb
packaging-0.109.0 lib/packaging/util/gpg.rb
packaging-0.108.2 lib/packaging/util/gpg.rb
packaging-0.108.1 lib/packaging/util/gpg.rb
packaging-0.108.0 lib/packaging/util/gpg.rb
packaging-0.107.2 lib/packaging/util/gpg.rb