# vi: encoding=utf-8 ts=8 sts=4 sw=4 et
import os
+import sys
import rpm
-import subprocess
+import pexpect
from config import sign_key
def getSigInfo(hdr):
siginfo = hdr.sprintf(string)
if siginfo == '(none)':
return None
-
+
return siginfo.split(',')[2].lstrip()
def is_signed(rpm_file):
return None
ts = rpm.ts()
- ts.setVSFlags(rpm._RPMVSF_NOSIGNATURES)
fdno = os.open(rpm_file, os.O_RDONLY)
hdr = ts.hdrFromFdno(fdno)
os.close(fdno)
return sign_key == sigid[-len(sign_key):]
-def signpkgs(files):
+def signpkgs(files, password):
if not os.path.isfile('/usr/bin/gpg'):
raise OSError, 'Missing gnupg binary'
if not os.path.isfile('/bin/rpm'):
raise OSError, 'Missing rpm binary'
- cmd = ['/bin/rpm', '--resign', '--define', '_signature gpg', '--define', '_gpg_name ' + sign_key] + files
- rc = subprocess.call(cmd, stdin = subprocess.PIPE, stdout = subprocess.PIPE, stderr = subprocess.PIPE, close_fds = True)
+ os.putenv('LC_ALL', 'C')
+ args = ['--resign', '--define', '_signature gpg', '--define', '_gpg_name ' + sign_key] + files
+ child = pexpect.spawn('/bin/rpm', args)
+ child.logfile_read = sys.stderr
+ child.expect('Enter pass phrase:', timeout=30)
+ child.sendline(password)
+ child.expect(pexpect.EOF, timeout=None)
+ child.close()
+ rc = child.exitstatus
if rc != 0:
raise OSError, 'package signing failed'
+ for rpm in files:
+ os.chmod(rpm, 0644)