diff options
| author | Patrick Williams <patrick@stwcx.xyz> | 2016-08-17 22:31:25 +0300 |
|---|---|---|
| committer | Patrick Williams <patrick@stwcx.xyz> | 2016-08-22 19:43:26 +0300 |
| commit | 60f9d69e016b11c468c98ea75ba0a60c44afbbc4 (patch) | |
| tree | ecb49581a9e41a37943c22cd9ef3f63451b20ee7 /import-layers/yocto-poky/meta/classes/sign_rpm.bbclass | |
| parent | e18c61205e0234b03697129c20cc69c9b3940efc (diff) | |
| download | openbmc-60f9d69e016b11c468c98ea75ba0a60c44afbbc4.tar.xz | |
yocto-poky: Move to import-layers subdir
We are going to import additional layers, so create a subdir to
hold all of the layers that we import with git-subtree.
Change-Id: I6f732153a22be8ca663035c518837e3cc5ec0799
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Diffstat (limited to 'import-layers/yocto-poky/meta/classes/sign_rpm.bbclass')
| -rw-r--r-- | import-layers/yocto-poky/meta/classes/sign_rpm.bbclass | 53 |
1 files changed, 53 insertions, 0 deletions
diff --git a/import-layers/yocto-poky/meta/classes/sign_rpm.bbclass b/import-layers/yocto-poky/meta/classes/sign_rpm.bbclass new file mode 100644 index 000000000..a8ea75faa --- /dev/null +++ b/import-layers/yocto-poky/meta/classes/sign_rpm.bbclass @@ -0,0 +1,53 @@ +# Class for generating signed RPM packages. +# +# Configuration variables used by this class: +# RPM_GPG_PASSPHRASE +# The passphrase of the signing key. +# RPM_GPG_NAME +# Name of the key to sign with. May be key id or key name. +# RPM_GPG_BACKEND +# Optional variable for specifying the backend to use for signing. +# Currently the only available option is 'local', i.e. local signing +# on the build host. +# GPG_BIN +# Optional variable for specifying the gpg binary/wrapper to use for +# signing. +# GPG_PATH +# Optional variable for specifying the gnupg "home" directory: +# +inherit sanity + +RPM_SIGN_PACKAGES='1' +RPM_GPG_BACKEND ?= 'local' + + +python () { + if d.getVar('RPM_GPG_PASSPHRASE_FILE', True): + raise_sanity_error('RPM_GPG_PASSPHRASE_FILE is replaced by RPM_GPG_PASSPHRASE', d) + # Check configuration + for var in ('RPM_GPG_NAME', 'RPM_GPG_PASSPHRASE'): + if not d.getVar(var, True): + raise_sanity_error("You need to define %s in the config" % var, d) + + # Set the expected location of the public key + d.setVar('RPM_GPG_PUBKEY', os.path.join(d.getVar('STAGING_DIR_TARGET', False), + d.getVar('sysconfdir', False), + 'pki', + 'rpm-gpg', + 'RPM-GPG-KEY-${DISTRO_VERSION}')) +} + +python sign_rpm () { + import glob + from oe.gpg_sign import get_signer + + signer = get_signer(d, d.getVar('RPM_GPG_BACKEND', True)) + rpms = glob.glob(d.getVar('RPM_PKGWRITEDIR', True) + '/*') + + signer.sign_rpms(rpms, + d.getVar('RPM_GPG_NAME', True), + d.getVar('RPM_GPG_PASSPHRASE', True)) +} + +do_package_index[depends] += "signing-keys:do_deploy" +do_rootfs[depends] += "signing-keys:do_populate_sysroot" |