-
Notifications
You must be signed in to change notification settings - Fork 22
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
* Use https to retrieve archive from Rakudo server * Retrieve PGP signature from Rakudo server (https) * Retrieve PGP public key over hkps and using full fingerprint * Verify archive using signature (explicitly with gpg2)
- Loading branch information
1 parent
048e15a
commit 33cba95
Showing
1 changed file
with
10 additions
and
1 deletion.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -12,13 +12,22 @@ RUN buildDeps=' \ | |
libencode-perl \ | ||
make \ | ||
' \ | ||
url="https://rakudo.org/downloads/star/rakudo-star-${rakudo_version}.tar.gz" \ | ||
keyserver='hkps.pool.sks-keyservers.net' \ | ||
keyfp='ECF8B611205B447E091246AF959E3D6197190DD5' \ | ||
This comment has been minimized.
Sorry, something went wrong.
This comment has been minimized.
Sorry, something went wrong.
tianon
Contributor
|
||
tmpdir="$(mktemp -d)" \ | ||
&& set -x \ | ||
&& export GNUPGHOME="$tmpdir" \ | ||
&& apt-get update \ | ||
&& apt-get --yes install --no-install-recommends $buildDeps \ | ||
&& rm -rf /var/lib/apt/lists/* \ | ||
&& mkdir ${tmpdir}/rakudo \ | ||
&& curl -fsSL http://rakudo.org/downloads/star/rakudo-star-${rakudo_version}.tar.gz -o ${tmpdir}/rakudo.tar.gz \ | ||
\ | ||
&& curl -fsSL ${url}.asc -o ${tmpdir}/rakudo.tar.gz.asc \ | ||
&& curl -fsSL $url -o ${tmpdir}/rakudo.tar.gz \ | ||
&& gpg2 --keyserver $keyserver --recv-keys $keyfp \ | ||
&& gpg2 --batch --verify ${tmpdir}/rakudo.tar.gz.asc ${tmpdir}/rakudo.tar.gz \ | ||
\ | ||
&& tar xzf ${tmpdir}/rakudo.tar.gz --strip-components=1 -C ${tmpdir}/rakudo \ | ||
&& ( \ | ||
cd ${tmpdir}/rakudo \ | ||
|
Hi, @jstuder-gh
Could you explain if it doesn’t bother you which public keys are used for which files.
I use "Compiler Only Installation" in a fork, and this verification does not work.
URL: https://rakudo.org/dl/rakudo/rakudo-2018.06.tar.gz (.asc)
It says
gpg: Can't check signature: No public key