install release keys in a saner way

author Fabian Grünbichler <f.gruenbichler@proxmox.com>

Tue, 21 Feb 2017 09:24:25 +0000 (10:24 +0100)

committer Wolfgang Bumiller <w.bumiller@proxmox.com>

Tue, 21 Feb 2017 10:06:17 +0000 (11:06 +0100)
author Fabian Grünbichler <f.gruenbichler@proxmox.com>
Tue, 21 Feb 2017 09:24:25 +0000 (10:24 +0100)
committer Wolfgang Bumiller <w.bumiller@proxmox.com>
Tue, 21 Feb 2017 10:06:17 +0000 (11:06 +0100)
diff --git a/Makefile b/Makefile

index ed7e307a80b81fded3b4e56eb8e16418a164692f..e7edb769eb2db38cbe3f13a22e124970c20b31d4 100644 (file)
--- a/Makefile
+++ b/Makefile
@@ -90,10 +90,6 @@ LINUX_TOOLS_DEB=${LINUX_TOOLS_PKG}_${KERNEL_VER}-${PKGREL}_amd64.deb
  
  DEBS=${DST_DEB} ${HDR_DEB} ${FW_DEB} ${PVE_DEB} ${VIRTUAL_HDR_DEB} ${LINUX_TOOLS_DEB}
  
-PVE_RELEASE_KEYS=                              \
-       proxmox-ve/proxmox-release-4.x.pubkey   \
-       proxmox-ve/proxmox-release-5.x.pubkey
-
  all: check_gcc ${DEBS}
  
  ${PVE_DEB} pve: proxmox-ve/control proxmox-ve/postinst ${PVE_RELEASE_KEYS}
@@ -101,7 +97,8 @@ ${PVE_DEB} pve: proxmox-ve/control proxmox-ve/postinst ${PVE_RELEASE_KEYS}
         mkdir -p proxmox-ve/data/DEBIAN
         mkdir -p proxmox-ve/data/usr/share/doc/${PVEPKG}/
         mkdir -p proxmox-ve/data/etc/apt/trusted.gpg.d
-       gpg2 --no-default-keyring --keyring ./proxmox-ve/data/etc/apt/trusted.gpg.d/proxmox-ve.gpg --import ${PVE_RELEASE_KEYS}
+       install -m 0644 proxmox-ve/proxmox-release-4.x.pubkey proxmox-ve/data/etc/apt/trusted.gpg.d/proxmox-ve-release-4.x.gpg
+       install -m 0644 proxmox-ve/proxmox-release-5.x.pubkey proxmox-ve/data/etc/apt/trusted.gpg.d/proxmox-ve-release-5.x.gpg
         sed -e 's/@KVNAME@/${KVNAME}/' -e 's/@KERNEL_VER@/${KERNEL_VER}/' -e 's/@RELEASE@/${RELEASE}/' -e 's/@PKGREL@/${PKGREL}/' <proxmox-ve/control >proxmox-ve/data/DEBIAN/control
         sed -e 's/@KVNAME@/${KVNAME}/' <proxmox-ve/postinst >proxmox-ve/data/DEBIAN/postinst
         chmod 0755 proxmox-ve/data/DEBIAN/postinst
diff --git a/proxmox-ve/postinst b/proxmox-ve/postinst

index baf3d293c955241f401cebdd6b22464821faaff4..88cd7787798ab75a1b4237680de5ed5f323d79bc 100755 (executable)
--- a/proxmox-ve/postinst
+++ b/proxmox-ve/postinst
@@ -19,6 +19,9 @@ case "$1" in
      # cleanup - remove Proxmox Release Key key from /etc/apt/trusted.gpg
      /usr/bin/apt-key --keyring /etc/apt/trusted.gpg del 9887F95A >/dev/null 2>&1 || /bin/true
  
+    # cleanup - remove old stretch-incompatible variant of installing release key
+    rm -f /etc/apt/trusted.gpg.d/proxmox-ve.gpg /etc/apt/trusted.gpg.d/proxmox-ve.gpg~
+
      # setup kernel links for installation CD (rescue boot)
      mkdir -p /boot/pve
      ln -sf /boot/vmlinuz-@KVNAME@ /boot/pve/vmlinuz
diff --git a/proxmox-ve/proxmox-release-4.x.pubkey b/proxmox-ve/proxmox-release-4.x.pubkey

index 816a8b8b9167c9438dff3fb14cb919a83d75c143..40416a623ca2dc062f197bd70084f6c79f408a79 100644 (file)

Binary files a/proxmox-ve/proxmox-release-4.x.pubkey and b/proxmox-ve/proxmox-release-4.x.pubkey differ
diff --git a/proxmox-ve/proxmox-release-5.x.pubkey b/proxmox-ve/proxmox-release-5.x.pubkey

index e7002c995380140bed423991e6a9e93ca9f55737..8488f4597a19764cefa9f505198cf9cade46a7a7 100644 (file)

Binary files a/proxmox-ve/proxmox-release-5.x.pubkey and b/proxmox-ve/proxmox-release-5.x.pubkey differ
author	Fabian Grünbichler <f.gruenbichler@proxmox.com>
	Tue, 21 Feb 2017 09:24:25 +0000 (10:24 +0100)
committer	Wolfgang Bumiller <w.bumiller@proxmox.com>
	Tue, 21 Feb 2017 10:06:17 +0000 (11:06 +0100)
Makefile		patch \| blob \| blame \| history
proxmox-ve/postinst		patch \| blob \| blame \| history
proxmox-ve/proxmox-release-4.x.pubkey		patch \| blob \| blame \| history
proxmox-ve/proxmox-release-5.x.pubkey		patch \| blob \| blame \| history