代码拉取完成,页面将自动刷新
同步操作将从 tupelo-shen/mysnapd 强制同步,此操作会覆盖自 Fork 仓库以来所做的任何修改,且无法恢复!!!
确定后同步将在后台操作,完成时将刷新页面,请耐心等待。
// -*- Mode: Go; indent-tabs-mode: t -*-
/*
* Copyright (C) 2014-2021 Canonical Ltd
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License version 3 as
* published by the Free Software Foundation.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program. If not, see <http://www.gnu.org/licenses/>.
*
*/
package main
import (
"fmt"
"time"
"github.com/jessevdk/go-flags"
// expected for digests
_ "golang.org/x/crypto/sha3"
"gitee.com/mysnapcore/mysnapd/asserts"
"gitee.com/mysnapcore/mysnapd/asserts/signtool"
"gitee.com/mysnapcore/mysnapd/i18n"
)
type cmdSignBuild struct {
Positional struct {
Filename string
} `positional-args:"yes" required:"yes"`
// XXX complete DeveloperID and SnapID
DeveloperID string `long:"developer-id" required:"yes"`
SnapID string `long:"snap-id" required:"yes"`
KeyName keyName `short:"k" default:"default" `
Grade string `long:"grade" choice:"devel" choice:"stable" default:"stable"`
}
var shortSignBuildHelp = i18n.G("Create a snap-build assertion")
var longSignBuildHelp = i18n.G(`
The sign-build command creates a snap-build assertion for the provided
snap file.
`)
func init() {
cmd := addCommand("sign-build",
shortSignBuildHelp,
longSignBuildHelp,
func() flags.Commander {
return &cmdSignBuild{}
}, map[string]string{
// TRANSLATORS: This should not start with a lowercase letter.
"developer-id": i18n.G("Identifier of the signer"),
// TRANSLATORS: This should not start with a lowercase letter.
"snap-id": i18n.G("Identifier of the snap package associated with the build"),
// TRANSLATORS: This should not start with a lowercase letter.
"k": i18n.G("Name of the GnuPG key to use (defaults to 'default' as key name)"),
// TRANSLATORS: This should not start with a lowercase letter.
"grade": i18n.G("Grade states the build quality of the snap (defaults to 'stable')"),
}, []argDesc{{
// TRANSLATORS: This needs to begin with < and end with >
name: i18n.G("<filename>"),
// TRANSLATORS: This should not start with a lowercase letter.
desc: i18n.G("Filename of the snap you want to assert a build for"),
}})
cmd.hidden = true
}
func (x *cmdSignBuild) Execute(args []string) error {
if len(args) > 0 {
return ErrExtraArgs
}
snapDigest, snapSize, err := asserts.SnapFileSHA3_384(x.Positional.Filename)
if err != nil {
return err
}
keypairMgr, err := signtool.GetKeypairManager()
if err != nil {
return err
}
privKey, err := keypairMgr.GetByName(string(x.KeyName))
if err != nil {
// TRANSLATORS: %q is the key name, %v the error message
return fmt.Errorf(i18n.G("cannot use %q key: %v"), x.KeyName, err)
}
pubKey := privKey.PublicKey()
timestamp := time.Now().Format(time.RFC3339)
headers := map[string]interface{}{
"developer-id": x.DeveloperID,
"authority-id": x.DeveloperID,
"snap-sha3-384": snapDigest,
"snap-id": x.SnapID,
"snap-size": fmt.Sprintf("%d", snapSize),
"grade": x.Grade,
"timestamp": timestamp,
}
adb, err := asserts.OpenDatabase(&asserts.DatabaseConfig{
KeypairManager: keypairMgr,
})
if err != nil {
return fmt.Errorf(i18n.G("cannot open the assertions database: %v"), err)
}
a, err := adb.Sign(asserts.SnapBuildType, headers, nil, pubKey.ID())
if err != nil {
return fmt.Errorf(i18n.G("cannot sign assertion: %v"), err)
}
_, err = Stdout.Write(asserts.Encode(a))
if err != nil {
return err
}
return nil
}
此处可能存在不合适展示的内容,页面不予展示。您可通过相关编辑功能自查并修改。
如您确认内容无涉及 不当用语 / 纯广告导流 / 暴力 / 低俗色情 / 侵权 / 盗版 / 虚假 / 无价值内容或违法国家有关法律法规的内容,可点击提交进行申诉,我们将尽快为您处理。
马建仓 AI 助手