Skip to content

Commit

Permalink
check gpg signatures during source validation
Browse files Browse the repository at this point in the history
  • Loading branch information
@msmeissn @coolo
msmeissn authored and coolo committed Jun 18, 2013
1 parent 7aeb9e6 commit fe8be93
Showing 1 changed file with 22 additions and 0 deletions.
22 changes: 22 additions & 0 deletions 20-files-present-and-referenced
View file
Original file line number Diff line number Diff line change
Expand Up @@ -178,6 +178,28 @@ for HASTOBETHER in `cat $TMPDIR/sources` ; do
check_tracked "$HASTOBETHER" || RETURN=2
done

#
# Verify GPG keys
#

shopt -s failglob
if echo $DIR_TO_CHECK/*keyring 2>/dev/null ; then
shopt -u failglob
gpg --no-default-keyring --keyring $TMPDIR/.checkifvalidsourcedir-gpg-keyring --import $DIR_TO_CHECK/*.keyring
shopt -s nullglob
for i in $DIR_TO_CHECK/*.sig $DIR_TO_CHECK/*.asc $DIR_TO_CHECK/*.gpg ; do
if [ -f "`basename $i`" ] ; then
gpg --no-default-keyring --keyring $TMPDIR/.checkifvalidsourcedir-gpg-keyring "$i" || {
echo "(E) signature $i does not validate"
RETURN=2
}
else
echo "(W) $i file found without a corresponding file to check for?"
fi
done
rm $TMPDIR/.checkifvalidsourcedir-gpg-keyring
fi

#
# Skip this test for now, if we have server side downloads
#
Expand Down

0 comments on commit fe8be93

Please sign in to comment.