blob: 1e7f12d10f82c465dbdf900428bc082e9a79c039 (
plain) (
tree)
|
|
#!/bin/sh
# generate signing keys
# Copyright (c) 2009 Natanael Copa <ncopa@alpinelinux.org>
#
# Distributed under GPL-2
#
# Depends on: busybox utilities, fakeroot,
#
abuild_ver=@VERSION@
sysconfdir=@sysconfdir@
abuild_conf=${ABUILD_CONF:-"$sysconfdir/abuild.conf"}
abuild_home=${ABUILD_USERDIR:-"$HOME/.abuild"}
abuild_userconf=${ABUILD_USERCONF:-"$abuild_home/abuild.conf"}
# read config
[ -f "$abuild_conf" ] && . "$abuild_conf"
# read user config if exists
[ -f "$abuild_userconf" ] && . "$abuild_userconf"
emailaddr=${PACKAGER##*<}
emailaddr=${emailaddr%%>*}
# if PACKAGER does not contain a valid email address, then ask git
if [ -z "$emailaddr" ] || [ "${emailaddr##*@}" = "$emailaddr" ]; then
emailaddr=$(git config --get user.email 2>/dev/null)
fi
if [ -n "$emailaddr" ]; then
default_name="$emailaddr"
else
default_name="$USER"
fi
mkdir -p "$abuild_home"
echo "Generating public/private rsa key pair for abuild"
echo -n "Enter file in which to save the key ($abuild_home/$default_name.rsa): "
read line
if [ -z "$line" ]; then
privkey="$abuild_home/$default_name.rsa"
else
privkey="$line"
fi
pubkey="$privkey.pub"
# generate the private key in a subshell with stricter umask
(
umask 0077
openssl genrsa -out "$privkey" 2048
)
openssl rsa -in "$privkey" -pubout -out "$pubkey"
echo ""
echo "You'll need to install $pubkey into "
echo "/etc/apk/keys to be able to install packages and repositories signed with"
echo "$privkey"
echo ""
echo "Please remember to make a safe backup of $privkey"
echo ""
|
