diff options
| author | EuAndreh <eu@euandre.org> | 2021-07-25 15:16:31 -0300 |
|---|---|---|
| committer | EuAndreh <eu@euandre.org> | 2021-07-25 15:16:31 -0300 |
| commit | 7400e108286a0fceacdac63b125fdc924c2dd50c (patch) | |
| tree | 4849176606778477ead8a9ded4c9ff43bf4a8feb /aux/workflow/sign-tarballs.sh | |
| parent | servers/nixvps/configuration.nix: Serve Git repositories from NGINX, remove G... (diff) | |
| download | server-7400e108286a0fceacdac63b125fdc924c2dd50c.tar.gz server-7400e108286a0fceacdac63b125fdc924c2dd50c.tar.xz | |
aux/: Update
Diffstat (limited to 'aux/workflow/sign-tarballs.sh')
| -rwxr-xr-x | aux/workflow/sign-tarballs.sh | 28 |
1 files changed, 24 insertions, 4 deletions
diff --git a/aux/workflow/sign-tarballs.sh b/aux/workflow/sign-tarballs.sh index 8de6ac4..3775e28 100755 --- a/aux/workflow/sign-tarballs.sh +++ b/aux/workflow/sign-tarballs.sh @@ -1,15 +1,35 @@ #!/bin/sh set -eu -PROJECT="$1" +while getopts 'n:' flag; do + case "$flag" in + n) + PROJECT="$OPTARG" + ;; + *) + exit 2 + ;; + esac +done +shift $((OPTIND -1)) + +assert_arg() { + if [ -z "$1" ]; then + echo "Missing $2" >&2 + exit 2 + fi +} + +assert_arg "${PROJECT:-}" '-n PROJECT' + -SIGNATURES="$(git notes --ref=refs/notes/signatures/tar.gz list | cut -d\ -f2)" +SIGNATURES="$(git notes --ref=refs/notes/signatures/tar.xz list | cut -d\ -f2)" for tag in $(git tag); do COMMIT="$(git rev-list -n1 "$tag")" if ! echo "$SIGNATURES" | grep -qF "$COMMIT"; then echo "Adding missing signature to $tag" >&2 - git notes --ref=refs/notes/signatures/tar.gz add -f -C "$( - git archive --format tar.gz --prefix "$PROJECT-${tag#v}/" "$tag" | + git notes --ref=refs/notes/signatures/tar.xz add -C "$( + git archive --format tar.xz --prefix "$PROJECT-$tag/" "$tag" | gpg --output - --armor --detach-sign | git hash-object -w --stdin )" "$tag" |