makepnd.git/scripts/libmakepkg/integrity, branch makepndmakepnd-ng
https://git.cloudef.pw/makepnd.git/atom?h=makepnd2017-07-06T03:21:42Zlibmakepkg: Fix improperly spelled local variable declaration2017-07-06T03:21:42ZEli Schwartzeschwartz93@gmail.com2017-07-06T03:14:14Zurn:sha1:b14ff6603809019f8f92f1650872cb93a110e67e
Signed-off-by: Eli Schwartz <eschwartz93@gmail.com>
Signed-off-by: Allan McRae <allan@archlinux.org>
libmakepkg/integrity: Fix error message not sent to stderr2017-07-06T02:55:45ZEli Schwartzeschwartz93@gmail.com2017-07-04T03:13:23Zurn:sha1:d4193d43cf5346b3a8cfc97a4fc354111df34081
Signed-off-by: Eli Schwartz <eschwartz93@gmail.com>
Signed-off-by: Allan McRae <allan@archlinux.org>
makepkg: create signature files outside of fakeroot2017-05-08T08:53:53ZAllan McRaeallan@archlinux.org2017-04-17T08:30:05Zurn:sha1:c6b04c04653ba9933fe978829148312e412a9ea7
With recent version of gpg, signing within fakeroot works on the first
invocation, but fails on later runs. Sign all packages outside of fakeroot
to avoid this issue.
Fixes FS#49946.
Signed-off-by: Allan McRae <allan@archlinux.org>
makepkg: Verify git signatures2017-01-04T03:59:15ZEli Schwartzeschwartz93@gmail.com2017-01-03T20:10:18Zurn:sha1:eaa82b4d0775252856a4e54a6f2a9ea191cf0b8f
A git repository is marked as signed if it contains the query "signed"
as defined by https://tools.ietf.org/html/rfc3986
Adds two utility functions in util/source.sh.in to extract fragments and
queries, and modifies source/git.sh.in to use them.
Signed-off-by: Eli Schwartz <eschwartz93@gmail.com>
Signed-off-by: Allan McRae <allan@archlinux.org>
libmakepkg/integrity: Verify file signatures in a separate function2017-01-04T03:59:15ZEli Schwartzeschwartz93@gmail.com2017-01-03T20:10:17Zurn:sha1:42e7020281d3ae260e1e9693495f527b7f476625
This makes it easier to add signature verification for new protos.
Signed-off-by: Eli Schwartz <eschwartz93@gmail.com>
Signed-off-by: Allan McRae <allan@archlinux.org>
Update copyright years2017-01-04T03:59:14ZAllan McRaeallan@archlinux.org2017-01-01T07:52:18Zurn:sha1:1a2d5bee3bc8841f81db7a4d6b2d41a2363b93d6
Signed-off-by: Allan McRae <allan@archlinux.org>
Use coreutils binaries for checking/generating checksums2016-10-22T10:50:55ZAllan McRaeallan@archlinux.org2016-10-11T13:04:25Zurn:sha1:577701250d645d1fc1a505cde34aedbeb3208ea5
If pacman is build against a crypto library other than openssl, it makes no
sense to require makepkg to use it.
The only currently considered alternative to openssl is nettle, which has no
binary for base64 encode/decode. This means that we could replace the hashing
cacluations with nettle-hash, but would require base64 from coreutils.
Given makepkg already relies heavily on coreutils, we might as well use all
the coreutils hashing binaries too.
This patch also improves the checking of required binaries for hashing
operations.
Signed-off-by: Allan McRae <allan@archlinux.org>
libmakepkg: extract functions for integrity checking2016-05-18T05:45:56ZAshley Whetterashley@awhetter.co.uk2016-05-08T16:28:28Zurn:sha1:4f114f38178aeaffcc571aa42e2f930ca916f79d
Signed-off-by: Ashley Whetter <ashley@awhetter.co.uk>
Signed-off-by: Allan McRae <allan@archlinux.org>