diff options
| author |  Mubashshir <ahm@jadupc.com> | 2023-02-15 15:37:47 +0600 |
|---|---|---|
| committer | Mubashshir <ahm@jadupc.com> | 2023-02-15 15:38:02 +0600 |
| commit | 1f972ea8f4cbf984ac972b3471903b156e39d283 (patch) | |
| tree | 39d8ebed6bd1b6828db97f9d0a7d1fe666880ac9 /Makefile | |
| download | jadupc-archive-keyring-1f972ea8f4cbf984ac972b3471903b156e39d283.tar.gz jadupc-archive-keyring-1f972ea8f4cbf984ac972b3471903b156e39d283.zip | |
Initial release
Signed-off-by: Mubashshir <ahm@jadupc.com>
Diffstat (limited to 'Makefile')
| -rw-r--r-- | Makefile | 57 |
1 files changed, 57 insertions, 0 deletions
diff --git a/Makefile b/Makefile new file mode 100644 index 0000000..4988822 --- /dev/null +++ b/Makefile @@ -0,0 +1,57 @@ +TRUSTED-LIST := $(patsubst active-keys/add-%,trusted.gpg/jadupc-archive-%.gpg,$(wildcard active-keys/add-*)) +TMPRING := trusted.gpg/build-area + +GPG_OPTIONS := --no-options --no-default-keyring --no-auto-check-trustdb --trustdb-name ./trustdb.gpg + +build: verify-indices keyrings/jadupc-archive-keyring.gpg verify-results $(TRUSTED-LIST) + +verify-indices: keyrings/team-members.gpg + gpg ${GPG_OPTIONS} \ + --keyring keyrings/team-members.gpg \ + --verify active-keys/index.gpg active-keys/index + +verify-results: keyrings/team-members.gpg keyrings/jadupc-archive-keyring.gpg + gpg ${GPG_OPTIONS} \ + --keyring keyrings/team-members.gpg --verify \ + keyrings/jadupc-archive-keyring.gpg.asc \ + keyrings/jadupc-archive-keyring.gpg + #FIXME: Do we need to verify the created keyrings in trusted.gpg.d, too? + # Maybe "just" checking that no key is added if we merge, but how… + +keyrings/jadupc-archive-keyring.gpg: active-keys/index + jetring-build -I $@ active-keys + gpg ${GPG_OPTIONS} --no-keyring --import-options import-export --import < $@ > $@.tmp + mv -f $@.tmp $@ + +keyrings/team-members.gpg: team-members/index + jetring-build -I $@ team-members + gpg ${GPG_OPTIONS} --no-keyring --import-options import-export --import < $@ > $@.tmp + mv -f $@.tmp $@ + +$(TRUSTED-LIST) :: trusted.gpg/jadupc-archive-%.gpg : active-keys/add-% active-keys/index + mkdir -p $(TMPRING) trusted.gpg + grep -F $(shell basename $<) -- active-keys/index > $(TMPRING)/index + cp $< $(TMPRING) + jetring-build -I $@ $(TMPRING) + rm -rf $(TMPRING) + gpg ${GPG_OPTIONS} --no-keyring --import-options import-export --import < $@ > $@.tmp + mv -f $@.tmp $@ + +clean: + rm -f keyrings/jadupc-archive-keyring.gpg \ + keyrings/jadupc-archive-keyring.gpg~ \ + keyrings/jadupc-archive-keyring.gpg.lastchangeset + rm -f keyrings/team-members.gpg \ + keyrings/team-members.gpg~ \ + keyrings/team-members.gpg.lastchangeset + rm -rf $(TMPRING) trusted.gpg trustdb.gpg + rm -f keyrings/*.cache + +install: build + install -d $(DESTDIR)/usr/share/keyrings/ + cp trusted.gpg/jadupc-archive-*.gpg $(DESTDIR)/usr/share/keyrings/ + cp keyrings/jadupc-archive-keyring.gpg $(DESTDIR)/usr/share/keyrings/ + install -d $(DESTDIR)/etc/apt/trusted.gpg.d/ + cp $(shell find trusted.gpg/ -name '*.gpg' -type f) $(DESTDIR)/etc/apt/trusted.gpg.d/ + +.PHONY: verify-indices verify-results clean build install |