Unverified Commit c0242adc authored by boklm's avatar boklm
Browse files

Add option to sign the sha256sums-unsigned-build.txt file

parent 444f6e22
Loading
Loading
Loading
Loading
+9 −0
Original line number Diff line number Diff line
@@ -149,6 +149,15 @@ the build files in the tor-browser-builds/ directory (unless you changed
the publish_dir option).


Signing builds
--------------

If the environment variable RBM_SIGN_BUILD is set to 1, the
sha256sums-unsigned-build.txt file will be signed with gpg.
You can use the RBM_GPG_OPTS environment variable to add some options
to the gpg command used to sign the file.


Cleaning obsolete files and containers images
---------------------------------------------

+3 −0
Original line number Diff line number Diff line
@@ -125,4 +125,7 @@ build: |
  [% END -%]
  cd "$destdir"
  sha256sum $(ls -1 *.exe *.tar.xz *.dmg *.mar *.zip | grep -v '\.incremental\.mar$' | sort) > sha256sums-unsigned-build.txt
  [% IF ENV.RBM_SIGN_BUILD -%]
    gpg -abs [% ENV.RBM_GPG_OPTS %] sha256sums-unsigned-build.txt
  [% END -%]
  cat sha256sums-unsigned-build.txt