@ -25,8 +25,15 @@ let
nspawnImages = ( pkgs . runCommand " l o c a l h o s t " { buildInputs = [ pkgs . coreutils pkgs . gnupg ] ; } ''
nspawnImages = ( pkgs . runCommand " l o c a l h o s t " { buildInputs = [ pkgs . coreutils pkgs . gnupg ] ; } ''
mkdir - p $ out
mkdir - p $ out
cd $ out
cd $ out
# produce a testimage.raw
dd if = /dev/urandom of = $ out/testimage.raw bs = $ ( ( 1024 * 1024 + 7 ) ) count = 5
dd if = /dev/urandom of = $ out/testimage.raw bs = $ ( ( 1024 * 1024 + 7 ) ) count = 5
sha256sum testimage . raw > SHA256SUMS
# produce a testimage2.tar.xz, containing the hello store path
tar cvJpf testimage2 . tar . xz $ { pkgs . hello }
# produce signature(s)
sha256sum testimage * > SHA256SUMS
export GNUPGHOME = " $ ( m k t e m p - d ) "
export GNUPGHOME = " $ ( m k t e m p - d ) "
cp - R $ { gpgKeyring } /* $ G N U P G H O M E
cp - R $ { gpgKeyring } /* $ G N U P G H O M E
gpg - - batch - - sign - - detach-sign - - output SHA256SUMS . gpg SHA256SUMS
gpg - - batch - - sign - - detach-sign - - output SHA256SUMS . gpg SHA256SUMS
@ -56,5 +63,9 @@ in {
client . succeed (
client . succeed (
" c m p / v a r / l i b / m a c h i n e s / t e s t i m a g e . r a w ${ nspawnImages } / t e s t i m a g e . r a w "
" c m p / v a r / l i b / m a c h i n e s / t e s t i m a g e . r a w ${ nspawnImages } / t e s t i m a g e . r a w "
)
)
client . succeed ( " m a c h i n e c t l p u l l - t a r - - v e r i f y = s i g n a t u r e h t t p : / / s e r v e r / t e s t i m a g e 2 . t a r . x z " )
client . succeed (
" c m p / v a r / l i b / m a c h i n e s / t e s t i m a g e 2 / ${ pkgs . hello } / b i n / h e l l o ${ pkgs . hello } / b i n / h e l l o "
)
'' ;
'' ;
} )
} )