V8.13.392.2025.11.07
All checks were successful
🛡️ Shell Script Linting / 🛡️ Shell Script Linting (push) Successful in 1m17s
All checks were successful
🛡️ Shell Script Linting / 🛡️ Shell Script Linting (push) Successful in 1m17s
Signed-off-by: Marc S. Weidner <msw@coresecret.dev>
This commit is contained in:
@@ -91,27 +91,28 @@ declare -grx VAR_WORKDIR="$(dirname "${VAR_SETUP_FULL}")" # '/roo
|
|||||||
exit 1
|
exit 1
|
||||||
}
|
}
|
||||||
|
|
||||||
### SOURCING MUST SET EARLY VARIABLES, GUARD_SOURCING(), CHECK_GIT().
|
### SOURCING MUST SET EARLY VARIABLES, GUARD_SOURCING().
|
||||||
. ./var/early.var.sh
|
. ./var/early.var.sh
|
||||||
. ./lib/lib_guard_sourcing.sh
|
. ./lib/lib_guard_sourcing.sh
|
||||||
. ./lib/lib_source_guard.sh
|
. ./lib/lib_source_guard.sh
|
||||||
|
|
||||||
|
### SECURING ENVIRONMENT.
|
||||||
|
source_guard "./var/bash.var.sh"
|
||||||
|
|
||||||
### CHECK FOR CONTACT, HELP, VERSION STRING, AND XTRACE DEBUG.
|
### CHECK FOR CONTACT, HELP, VERSION STRING, AND XTRACE DEBUG.
|
||||||
for arg in "$@"; do case "${arg,,}" in -c|--contact) . ./lib/lib_contact.sh ; contact; exit 0;; esac; done
|
for arg in "$@"; do case "${arg,,}" in -c|--contact) . ./lib/lib_contact.sh ; contact; exit 0;; esac; done
|
||||||
for arg in "$@"; do case "${arg,,}" in -h|--help) . ./lib/lib_usage.sh ; usage ; exit 0;; esac; done
|
for arg in "$@"; do case "${arg,,}" in -h|--help) . ./lib/lib_usage.sh ; usage ; exit 0;; esac; done
|
||||||
for arg in "$@"; do case "${arg,,}" in -v|--version) . ./lib/lib_version.sh ; version; exit 0;; esac; done
|
for arg in "$@"; do case "${arg,,}" in -v|--version) . ./lib/lib_version.sh ; version; exit 0;; esac; done
|
||||||
for arg in "$@"; do case "${arg,,}" in -d|--debug) . ./meta_sources_debug.sh; debugger "${@}";; esac; done
|
for arg in "$@"; do case "${arg,,}" in -d|--debug) . ./meta_sources_debug.sh; debugger "${@}";; esac; done
|
||||||
|
|
||||||
### CHECKING REQUIRED PACKAGES.
|
### SECURING SECRETS ARTIFACTS.
|
||||||
check_pkgs
|
find "${VAR_TMP_SECRET}" -type f -exec chmod 0400 {} +
|
||||||
|
|
||||||
### ALL CHECKS DONE. READY TO START THE SCRIPT.
|
### ALL CHECKS DONE. READY TO START THE SCRIPT.
|
||||||
find "${VAR_TMP_SECRET}" -type f -exec chmod 0400 {} +
|
|
||||||
declare -grx VAR_SETUP="true"
|
declare -grx VAR_SETUP="true"
|
||||||
|
|
||||||
### SOURCING VARIABLES.
|
### SOURCING VARIABLES.
|
||||||
[[ "${VAR_SETUP}" == true ]] && {
|
[[ "${VAR_SETUP}" == true ]] && {
|
||||||
source_guard "./var/bash.var.sh"
|
|
||||||
source_guard "./var/color.var.sh"
|
source_guard "./var/color.var.sh"
|
||||||
source_guard "./var/global.var.sh"
|
source_guard "./var/global.var.sh"
|
||||||
}
|
}
|
||||||
@@ -154,6 +155,9 @@ declare -grx VAR_SETUP="true"
|
|||||||
source_guard "./lib/lib_usage.sh"
|
source_guard "./lib/lib_usage.sh"
|
||||||
}
|
}
|
||||||
|
|
||||||
|
### CHECKING REQUIRED PACKAGES.
|
||||||
|
check_pkgs
|
||||||
|
|
||||||
### ADVISORY LOCK.
|
### ADVISORY LOCK.
|
||||||
exec 127>/var/lock/ciss_live_builder.lock || {
|
exec 127>/var/lock/ciss_live_builder.lock || {
|
||||||
printf "\e[91m❌ Cannot open lockfile for writing! Bye... \e[0m\n" >&2
|
printf "\e[91m❌ Cannot open lockfile for writing! Bye... \e[0m\n" >&2
|
||||||
|
|||||||
@@ -51,24 +51,24 @@ init_gnupg() {
|
|||||||
# shellcheck disable=SC2174
|
# shellcheck disable=SC2174
|
||||||
mkdir -p -m 0700 "${GNUPGHOME}"
|
mkdir -p -m 0700 "${GNUPGHOME}"
|
||||||
|
|
||||||
cat << EOF >> "${GNUPGHOME}/gpg-agent.conf"
|
cat << EOF >| "${GNUPGHOME}/gpg-agent.conf"
|
||||||
allow-loopback-pinentry
|
allow-loopback-pinentry
|
||||||
pinentry-program /usr/bin/pinentry-tty
|
pinentry-program /usr/bin/pinentry-tty
|
||||||
EOF
|
EOF
|
||||||
|
|
||||||
gpgconf --kill gpg-agent || true
|
gpgconf --kill gpg-agent 2>&1 || true
|
||||||
|
gpgconf --create-socketdir 2>&1 || true
|
||||||
|
|
||||||
if ! gpgconf --launch gpg-agent >/dev/null 2>&1; then
|
if ! gpgconf --launch gpg-agent >| /tmp/cdlb_gpg-agent.log 2>&1; then
|
||||||
|
|
||||||
printf "\e[91m++++ ++++ ++++ ++++ ++++ ++++ ++ Failed to launch gpg-agent. \e[0m\n"
|
printf "\e[91m++++ ++++ ++++ ++++ ++++ ++++ ++ Failed to launch gpg-agent. \e[0m\n"
|
||||||
umask "${__umask}"
|
|
||||||
return "${ERR_GPG__AGENT}"
|
|
||||||
|
|
||||||
fi
|
fi
|
||||||
|
|
||||||
else
|
else
|
||||||
|
|
||||||
printf "\e[93m++++ ++++ ++++ ++++ ++++ ++++ ++ VAR_CDLB_INSIDE_RUNNER: [%s] \e[0m\n" "${VAR_CDLB_INSIDE_RUNNER}"
|
printf "\e[93m++++ ++++ ++++ ++++ ++++ ++++ ++ VAR_CDLB_INSIDE_RUNNER: [%s] leaving GNUPGHOME untouched.\e[0m\n" "${VAR_CDLB_INSIDE_RUNNER}"
|
||||||
|
|
||||||
fi
|
fi
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user