[prev in list] [next in list] [prev in thread] [next in thread] 

List:       opensuse-buildservice
Subject:    [opensuse-buildservice] [SOLVED] Re: OBS + KIWI - manually calculating and signing SHA256 checksum f
From:       Linux Kamarada <linuxkamarada () gmail ! com>
Date:       2019-12-13 20:45:00
Message-ID: CAGiRJVLn_wHgAFv=YKWYf2kEMqpczpsHd1dUjsQ9N98DsUjNmQ () mail ! gmail ! com
[Download RAW message or body]

On Fri, Dec 13, 2019 at 1:28 PM Linux Kamarada <linuxkamarada@gmail.com> wrote:
>
> I'm trying to recreate the checksum file and sign it inside the
> kiwi_post_run script, but GPG complains it has no secret key.
>
> Where can I find (i.e. the file path of) the GPG key used by OBS to
> sign the checksum file? How can I reference that file inside my
> kiwi_post_run script?
>

Do you know what I discovered by accident? If I just recreate the
checksum file (i.e. using sha256sum inside kiwi_post_run), it ends up
signed somehow.

Links:

- the script that renames the image and recalculates the checksum (it
does not sign the checksum file):

https://build.opensuse.org/package/view_file/home:kamarada:15.1/live-kiwi-hook/kiwi_post_run?expand=1

- the built image and its checksum file (signed):

https://build.opensuse.org/package/binaries/home:kamarada:15.1/Linux-Kamarada-GNOME:en_US/images

Anyone who knows the internals of OBS could confirm that OBS signs the
file itself?

The problem was solved anyway.

Thanks!


Antonio
The Linux Kamarada Project
http://kamarada.github.io/
-- 
To unsubscribe, e-mail: opensuse-buildservice+unsubscribe@opensuse.org
To contact the owner, e-mail: opensuse-buildservice+owner@opensuse.org

[prev in list] [next in list] [prev in thread] [next in thread]