V9.14.008.2026.06.04
🛡️ Retrieve DNSSEC status of coresecret.dev. / 🛡️ Retrieve DNSSEC status of coresecret.dev. (push) Has been cancelled
🛡️ Shell Script Linting / 🛡️ Shell Script Linting (push) Has been cancelled
💙 Generating a PUBLIC Live ISO. / 💙 Generating a PUBLIC Live ISO. (push) Has been cancelled
🔐 Generating a Private Live ISO TRIXIE. / 🔐 Generating a Private Live ISO TRIXIE. (push) Has been cancelled
🛡️ Retrieve DNSSEC status of coresecret.dev. / 🛡️ Retrieve DNSSEC status of coresecret.dev. (push) Has been cancelled
🛡️ Shell Script Linting / 🛡️ Shell Script Linting (push) Has been cancelled
💙 Generating a PUBLIC Live ISO. / 💙 Generating a PUBLIC Live ISO. (push) Has been cancelled
🔐 Generating a Private Live ISO TRIXIE. / 🔐 Generating a Private Live ISO TRIXIE. (push) Has been cancelled
Signed-off-by: Marc S. Weidner <msw@coresecret.dev>
This commit is contained in:
+71
-1
@@ -21,6 +21,7 @@ guard_sourcing || return "${ERR_GUARD_SRCE}"
|
||||
# VAR_AGE_KEY
|
||||
# VAR_ARCHITECTURE
|
||||
# VAR_BUILD_LOG
|
||||
# VAR_CISS_SECUREBOOT_PROFILE
|
||||
# VAR_DROPBEAR_VERSION
|
||||
# VAR_EARLY_DEBUG
|
||||
# VAR_GITEA_RUNNER
|
||||
@@ -44,6 +45,7 @@ guard_sourcing || return "${ERR_GUARD_SRCE}"
|
||||
# VAR_SIGNING_KEY
|
||||
# VAR_SIGNING_KEY_FPR
|
||||
# VAR_SIGNING_KEY_PASS
|
||||
# VAR_SOPS_VERSION
|
||||
# VAR_SSHFP
|
||||
# VAR_SSHPORT
|
||||
# VAR_SSHPUBKEY
|
||||
@@ -51,7 +53,7 @@ guard_sourcing || return "${ERR_GUARD_SRCE}"
|
||||
# Arguments:
|
||||
# None
|
||||
# Returns:
|
||||
# 0: on success
|
||||
# ERR_ARG_MSMTCH: on failure
|
||||
# ERR_ARG_MSMTCH: on failure
|
||||
# ERR_CONTROL_CT: on failure
|
||||
# ERR_DROPBEAR_V: on failure
|
||||
@@ -67,6 +69,7 @@ guard_sourcing || return "${ERR_GUARD_SRCE}"
|
||||
# ERR_RENICE_PRI: on failure
|
||||
# ERR_RGHT_PWD_F: on failure
|
||||
# ERR_SPLASH_PNG: on failure
|
||||
# ERR__SOPS__VER: on failure
|
||||
# ERR__SSH__PORT: on failure
|
||||
#######################################
|
||||
arg_parser() {
|
||||
@@ -235,6 +238,45 @@ arg_parser() {
|
||||
fi
|
||||
;;
|
||||
|
||||
--sops-version)
|
||||
if [[ -n "${2-}" ]]; then
|
||||
declare sops_version="${2#v}"
|
||||
if [[ "${sops_version}" =~ ^[0-9]+\.[0-9]+\.[0-9]+$ ]]; then
|
||||
# shellcheck disable=SC2034
|
||||
declare -gx VAR_SOPS_VERSION="${sops_version}"
|
||||
shift 2
|
||||
else
|
||||
if ! ${VAR_HANDLER_AUTOBUILD}; then boot_screen_cleaner; fi
|
||||
printf "\e[91m❌ ERROR: --sops-version MUST match '<MAJOR>.<MINOR>.<PATCH>' or 'v<MAJOR>.<MINOR>.<PATCH>'.\e[0m\n" >&2
|
||||
read -r -p $'\e[92m✅ Press \'ENTER\' to exit the script ... \e[0m'
|
||||
# shellcheck disable=SC2154
|
||||
exit "${ERR__SOPS__VER}"
|
||||
fi
|
||||
else
|
||||
if ! ${VAR_HANDLER_AUTOBUILD}; then boot_screen_cleaner; fi
|
||||
printf "\e[91m❌ ERROR: --sops-version MUST be provided with a semantic version.\e[0m\n" >&2
|
||||
read -r -p $'\e[92m✅ Press \'ENTER\' to exit the script ... \e[0m'
|
||||
# shellcheck disable=SC2154
|
||||
exit "${ERR__SOPS__VER}"
|
||||
fi
|
||||
;;
|
||||
|
||||
--sops-version=*)
|
||||
declare sops_version="${1#*=}"
|
||||
sops_version="${sops_version#v}"
|
||||
if [[ "${sops_version}" =~ ^[0-9]+\.[0-9]+\.[0-9]+$ ]]; then
|
||||
# shellcheck disable=SC2034
|
||||
declare -gx VAR_SOPS_VERSION="${sops_version}"
|
||||
shift 1
|
||||
else
|
||||
if ! ${VAR_HANDLER_AUTOBUILD}; then boot_screen_cleaner; fi
|
||||
printf "\e[91m❌ ERROR: --sops-version MUST match '<MAJOR>.<MINOR>.<PATCH>' or 'v<MAJOR>.<MINOR>.<PATCH>'.\e[0m\n" >&2
|
||||
read -r -p $'\e[92m✅ Press \'ENTER\' to exit the script ... \e[0m'
|
||||
# shellcheck disable=SC2154
|
||||
exit "${ERR__SOPS__VER}"
|
||||
fi
|
||||
;;
|
||||
|
||||
--jump-host)
|
||||
if [[ -n "${2-}" && "${2}" != -* ]]; then
|
||||
declare -i count=0
|
||||
@@ -475,6 +517,34 @@ arg_parser() {
|
||||
shift 2
|
||||
;;
|
||||
|
||||
--secure-boot-profile)
|
||||
if [[ -n "${2-}" && "${2,,}" =~ ^(debian-shim|ciss-uki)$ ]]; then
|
||||
# shellcheck disable=SC2034
|
||||
declare -gx VAR_CISS_SECUREBOOT_PROFILE="${2,,}"
|
||||
shift 2
|
||||
else
|
||||
if ! ${VAR_HANDLER_AUTOBUILD}; then boot_screen_cleaner; fi
|
||||
printf "\e[91m❌ Error: --secure-boot-profile MUST be 'debian-shim' or 'ciss-uki'. \e[0m\n" >&2
|
||||
read -p -r $'\e[92m✅ Press \'ENTER\' to exit the script ... \e[0m'
|
||||
exit "${ERR_ARG_MSMTCH}"
|
||||
fi
|
||||
;;
|
||||
|
||||
--secure-boot-profile=*)
|
||||
declare profile="${1#*=}"
|
||||
profile="${profile,,}"
|
||||
if [[ "${profile}" =~ ^(debian-shim|ciss-uki)$ ]]; then
|
||||
# shellcheck disable=SC2034
|
||||
declare -gx VAR_CISS_SECUREBOOT_PROFILE="${profile}"
|
||||
shift 1
|
||||
else
|
||||
if ! ${VAR_HANDLER_AUTOBUILD}; then boot_screen_cleaner; fi
|
||||
printf "\e[91m❌ Error: --secure-boot-profile MUST be 'debian-shim' or 'ciss-uki'. \e[0m\n" >&2
|
||||
read -p -r $'\e[92m✅ Press \'ENTER\' to exit the script ... \e[0m'
|
||||
exit "${ERR_ARG_MSMTCH}"
|
||||
fi
|
||||
;;
|
||||
|
||||
--signing_ca=*)
|
||||
# shellcheck disable=SC2034
|
||||
declare -gx VAR_SIGNING_CA="${1#*=}"
|
||||
|
||||
Reference in New Issue
Block a user