From 480b0f009c0f56f0d570bb4e76d78781db5c0bda Mon Sep 17 00:00:00 2001 From: Rob Austein Date: Tue, 21 Jun 2016 23:05:38 -0400 Subject: First cut at package builder. --- build-package.py | 39 +++++++++++++++++++++++++++++++++++++++ 1 file changed, 39 insertions(+) create mode 100644 build-package.py (limited to 'build-package.py') diff --git a/build-package.py b/build-package.py new file mode 100644 index 0000000..ae7b0b1 --- /dev/null +++ b/build-package.py @@ -0,0 +1,39 @@ +#!/usr/bin/env python + +import subprocess +import tempfile +import argparse +import hashlib +import tarfile +import json + +parser = argparse.ArgumentParser() +parser.add_argument("tarfile", type = argparse.FileType("wb"), help = "tarball to create") +parser.add_argument("firmware", nargs = "+", help = "firmware files to stuff into tarball") +args = parser.parse_args() + +tar = tarfile.TarFile(mode = "w", fileobj = args.tarfile) + +status = [line.split() for line in subprocess.check_output(("git", "submodule", "status")).splitlines()] +sha256 = {} + +for fn in args.firmware: + with open(fn, "rb") as f: + sha256[fn] = hashlib.sha256(f.read()).hexdigest() + tar.add(fn) + +# export GNUPGHOME := /home/aptbot/gnupg +# --no-default-keyring --keyring isc-pubring.gpg --secret-keyring isc-secring.gpg + +with tempfile.NamedTemporaryFile() as f: + gpg = subprocess.Popen(("gpg", "--clearsign", "--no-default-keyring", + "--keyring", "/home/aptbot/gnupg/pubring.gpg", + "--secret-keyring", "/home/aptbot/gnupg/secring.gpg", + "--trustdb-name", "/home/aptbot/gnupg/trustdb.gpg", + "--no-random-seed-file", "--no-permission-warning", + "--personal-digest-preferences", "SHA256"), + stdin = subprocess.PIPE, stdout = f) + json.dump(dict(commits = status, sha256 = sha256), gpg.stdin, indent = 2) + gpg.stdin.close() + gpg.wait() + tar.add(f.name, "+MANIFEST") -- cgit v1.2.3