2016-07-02 10:58:02 +02:00
|
|
|
#!/bin/sh
|
|
|
|
|
|
2024-01-30 09:58:34 +01:00
|
|
|
# Copyright (c) 2016-2024 Franco Fichtner <franco@opnsense.org>
|
2016-07-02 10:58:02 +02:00
|
|
|
#
|
|
|
|
|
# Redistribution and use in source and binary forms, with or without
|
|
|
|
|
# modification, are permitted provided that the following conditions
|
|
|
|
|
# are met:
|
|
|
|
|
#
|
|
|
|
|
# 1. Redistributions of source code must retain the above copyright
|
|
|
|
|
# notice, this list of conditions and the following disclaimer.
|
|
|
|
|
#
|
|
|
|
|
# 2. Redistributions in binary form must reproduce the above copyright
|
|
|
|
|
# notice, this list of conditions and the following disclaimer in the
|
|
|
|
|
# documentation and/or other materials provided with the distribution.
|
|
|
|
|
#
|
|
|
|
|
# THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
|
|
|
|
|
# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
|
|
|
|
|
# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
|
|
|
|
|
# ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
|
|
|
|
|
# FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
|
|
|
|
|
# DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
|
|
|
|
|
# OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
|
|
|
|
|
# HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
|
|
|
|
|
# LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
|
|
|
|
|
# OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
|
|
|
|
|
# SUCH DAMAGE.
|
|
|
|
|
|
|
|
|
|
set -e
|
|
|
|
|
|
|
|
|
|
SELF=sign
|
|
|
|
|
|
2017-04-27 19:14:36 +02:00
|
|
|
. ./common.sh
|
2016-07-02 10:58:02 +02:00
|
|
|
|
2020-01-22 22:20:54 +01:00
|
|
|
VERSIONDIR="/usr/local/opnsense/version"
|
2016-07-02 10:58:02 +02:00
|
|
|
|
2020-01-22 22:20:54 +01:00
|
|
|
for ARG in ${@}; do
|
|
|
|
|
case ${ARG} in
|
2024-04-03 14:15:45 +02:00
|
|
|
aux)
|
|
|
|
|
AUXSET=$(find_set aux)
|
|
|
|
|
if [ -f "${AUXSET}" ]; then
|
|
|
|
|
generate_signature ${AUXSET}
|
|
|
|
|
fi
|
|
|
|
|
;;
|
2020-01-22 22:20:54 +01:00
|
|
|
base)
|
2021-07-08 12:05:40 +02:00
|
|
|
BASESET=$(find_set base)
|
|
|
|
|
if [ -f "${BASESET}" ]; then
|
2020-01-22 22:20:54 +01:00
|
|
|
setup_stage ${STAGEDIR}
|
2021-07-08 12:05:40 +02:00
|
|
|
setup_set ${STAGEDIR} ${BASESET}
|
2020-01-22 22:20:54 +01:00
|
|
|
generate_signature ${STAGEDIR}${VERSIONDIR}/base.mtree
|
2021-07-08 12:05:40 +02:00
|
|
|
rm ${BASESET}
|
|
|
|
|
generate_set ${STAGEDIR} ${BASESET}
|
|
|
|
|
generate_signature ${BASESET}
|
2020-01-22 22:20:54 +01:00
|
|
|
fi
|
|
|
|
|
;;
|
|
|
|
|
kernel)
|
2021-07-08 12:05:40 +02:00
|
|
|
KERNELSET=$(find_set kernel)
|
|
|
|
|
if [ -f "${KERNELSET}" ]; then
|
2020-01-22 22:20:54 +01:00
|
|
|
setup_stage ${STAGEDIR}
|
2021-07-08 12:05:40 +02:00
|
|
|
setup_set ${STAGEDIR} ${KERNELSET}
|
2020-01-22 22:20:54 +01:00
|
|
|
generate_signature ${STAGEDIR}${VERSIONDIR}/kernel.mtree
|
2021-07-08 12:05:40 +02:00
|
|
|
rm ${KERNELSET}
|
|
|
|
|
generate_set ${STAGEDIR} ${KERNELSET}
|
|
|
|
|
generate_signature ${KERNELSET}
|
2020-01-22 22:20:54 +01:00
|
|
|
fi
|
|
|
|
|
;;
|
|
|
|
|
packages)
|
2021-07-08 12:05:40 +02:00
|
|
|
PACKAGESET=$(find_set packages)
|
|
|
|
|
if [ -f "${PACKAGESET}" ]; then
|
2020-01-22 22:20:54 +01:00
|
|
|
setup_stage ${STAGEDIR}
|
|
|
|
|
extract_packages ${STAGEDIR}
|
2021-01-18 17:29:17 +01:00
|
|
|
bundle_packages ${STAGEDIR}
|
2020-01-22 22:20:54 +01:00
|
|
|
fi
|
|
|
|
|
;;
|
2024-01-30 09:58:34 +01:00
|
|
|
release)
|
|
|
|
|
RELEASESET=$(find_set release)
|
|
|
|
|
if [ -f "${RELEASESET}" ]; then
|
|
|
|
|
setup_stage ${STAGEDIR}
|
|
|
|
|
setup_set ${STAGEDIR} ${RELEASESET}
|
|
|
|
|
for FILE in $(find ${STAGEDIR} -name "*.sha256" -o \
|
|
|
|
|
-name "*.pub"); do
|
|
|
|
|
sign_image ${FILE}
|
|
|
|
|
done
|
|
|
|
|
rm ${RELEASESET}
|
|
|
|
|
tar -C ${STAGEDIR} -cf ${RELEASESET} .
|
|
|
|
|
fi
|
2020-01-22 22:20:54 +01:00
|
|
|
esac
|
|
|
|
|
done
|
