mirror of
https://github.com/NVIDIA/nvidia-container-toolkit
synced 2024-12-01 16:52:54 +00:00
0d862efa9c
This change ensures that the centos7 and ubuntu18.04 packages are published to the generic rpm and deb repos, respectively. All other packages except the centos8-ppc64le packages are skipped as these use cases are covered by the generic packages. Signed-off-by: Evan Lezar <elezar@nvidia.com>
116 lines
2.8 KiB
Bash
Executable File
116 lines
2.8 KiB
Bash
Executable File
#!/usr/bin/env bash
|
|
|
|
: "${ALL_DEBS:? Must set ALL_DEBS}"
|
|
: "${ALL_RPMS:? Must set ALL_RPMS}"
|
|
: "${GPG_LOCAL_USER:? Must set GPG_LOCAL_USER}"
|
|
: "${TARGETS:? Must set TARGETS}"
|
|
|
|
set -x -e
|
|
|
|
function deb-sign {
|
|
local last_found
|
|
for r in "$@"; do
|
|
if [ -f "./${r}" ]; then
|
|
last_found=${r}
|
|
fi
|
|
done
|
|
if [[ -z ${last_found} ]]; then
|
|
echo "WARNING: No expected package found in $(pwd); skipping signing of repo;"
|
|
return
|
|
fi
|
|
apt-ftparchive packages . \
|
|
| tee Packages \
|
|
| xz > Packages.xz
|
|
apt-ftparchive -c repo.conf release . \
|
|
| gpg --batch --yes --expert --clearsign \
|
|
--armor \
|
|
--no-emit-version \
|
|
--no-comments \
|
|
--personal-digest-preferences sha512 \
|
|
--local-user "${GPG_LOCAL_USER}" \
|
|
> InRelease
|
|
}
|
|
|
|
function rpm-sign {
|
|
for r in "$@"; do
|
|
if [ -f "./${r}" ]; then
|
|
rpmsign --addsign --key-id A04EA552 --digest-algo=sha512 "${r}"
|
|
fi
|
|
done
|
|
createrepo -v --no-database -s sha512 --compress-type xz --revision "1.0" .
|
|
gpg2 --batch --yes --expert --sign --detach-sign \
|
|
--armor \
|
|
--no-emit-version \
|
|
--no-comments --personal-digest-preferences sha512 \
|
|
--local-user "${GPG_LOCAL_USER}" \
|
|
repodata/repomd.xml
|
|
}
|
|
|
|
function sign() {
|
|
local target=$1
|
|
local dst_root=$2
|
|
local by_package_type=$3
|
|
|
|
local src_dist=${target%-*}
|
|
local dst_dist=${src_dist/amazonlinux/amzn}
|
|
|
|
local pkg_type=unknown
|
|
local arch=${target##*-}
|
|
local dst_arch=${arch}
|
|
|
|
case ${src_dist} in
|
|
amazonlinux*) pkg_type=rpm
|
|
;;
|
|
centos* | rpm) pkg_type=rpm
|
|
;;
|
|
debian*) pkg_type=deb
|
|
;;
|
|
fedora*) pkg_type=rpm
|
|
;;
|
|
opensuse-leap*) pkg_type=rpm
|
|
;;
|
|
ubuntu* | deb) pkg_type=deb
|
|
arch=${arch//ppc64le/ppc64el}
|
|
;;
|
|
*) echo "ERROR: unexpected distribution ${src_dist}"
|
|
;;
|
|
esac
|
|
|
|
if [[ x"${by_package_type}" == x"true" ]]; then
|
|
dst_dist=${pkg_type}
|
|
fi
|
|
|
|
local dst=${dst_root}/${dst_dist}/${arch}
|
|
|
|
if [[ ! -d ${dst} ]]; then
|
|
echo "Directory ${dst} not found. Skipping"
|
|
return
|
|
fi
|
|
|
|
cd "${dst}"
|
|
if [[ -f "/etc/debian_version" ]]; then
|
|
[[ "${pkg_type}" == "deb" ]] && deb-sign ${ALL_DEBS}
|
|
else
|
|
[[ "${pkg_type}" == "rpm" ]] && rpm-sign ${ALL_RPMS}
|
|
fi
|
|
cd -
|
|
}
|
|
|
|
for target in ${TARGETS[@]}; do
|
|
echo "checking target=${target}"
|
|
by_package_type=
|
|
case ${target} in
|
|
ubuntu18.04-* | centos7-*)
|
|
by_package_type="true"
|
|
;;
|
|
centos8-ppc64le)
|
|
by_package_type="false"
|
|
;;
|
|
*)
|
|
echo "Skipping target ${target}"
|
|
continue
|
|
;;
|
|
esac
|
|
sign "${target}" "$(pwd)" ${by_package_type}
|
|
done
|