rpms / kernel

Clone
Source Code
GIT

Blame SOURCES/sign-modules

c4 c5 c5-plus c6 c6-plus c7 c7-alt-modified c7-beta c7-i686 c7-sig-altarch-kernel c7-sig-altarch-kernelexp c7-sig-altarch-lts-5-10 c7-sig-altarch-lts-5-15 c7-sig-altarch-lts-5-4 c7-sig-altarch-lts-6-1 c7-sig-centosplus-kernel c8 c8-beta c8-init-modify c8-sig-altarch-lts-5-10 c8-sig-altarch-lts-5-15 c8-sig-altarch-lts-5-4 c8-sig-centosplus-kernel c8s c8s-sig-hyperscale c9 c9-beta c9s-sig-altarch-lts-5-15 c9s-sig-hyperscale
  1.   a6257d5f239405d616dfcdb8965c7fc4b1f76fdc
  2.   SOURCES
  3.   sign-modules
Blob History Raw
8481d4 
#! /bin/bash
8481d4
8481d4 
MODSECKEY="./signing_key.priv"
8481d4 
MODPUBKEY="./signing_key.x509"
d843f0 
moddir=$1
d843f0
d843f0 
modules=`find $moddir -type f -name '*.ko'`
8481d4
d843f0 
NPROC=`nproc`
d843f0 
[ -z "$NPROC" ] && NPROC=1
8481d4
d843f0 
# NB: this loop runs 2000+ iterations. Try to be fast.
d843f0 
echo "$modules" | xargs -r -n16 -P $NPROC sh -c "
d843f0 
for mod; do
d843f0 
    ./scripts/sign-file sha256 $MODSECKEY $MODPUBKEY \$mod
d843f0 
    rm -f \$mod.sig \$mod.dig
8481d4 
done
d843f0 
" DUMMYARG0   # xargs appends ARG1 ARG2..., which go into $mod in for loop.
8481d4
d843f0 
RANDOMMOD=$(echo "$modules" | sort -R | tail -n 1)
8481d4 
if [ "~Module signature appended~" != "$(tail -c 28 $RANDOMMOD)" ]; then
8481d4 
	echo "*** Modules are unsigned! ***"
8481d4 
	exit 1
8481d4 
fi
8481d4
8481d4 
exit 0

Powered by Pagure 5.13.3

SSH Hostkey/Fingerprint | Documentation