almet/dangerzone
1
0
Fork 0
mirror of https://github.com/freedomofpress/dangerzone.git synced 2025-04-28 18:02:38 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 11

Add a dangerzone-image store-signature CLI command

Browse source 
This can be useful when signatures are missing from the system, for an
already present image, and can be used as a way to fix user issues.
This commit is contained in:
Alexis Métaireau 2025-03-03 12:58:27 +01:00
parent 9aacb0415b
commit c517c5b3f9
No known key found for this signature in database
GPG key ID: C65C7A89A8FFC56E
1 changed files with 11 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
dangerzone/updater/cli.py
View file

@ -42,6 +42,17 @@ def upgrade(image: str, pubkey: str) -> None:
raise click.Abort()
@main.command()
@click.argument("image", default=DEFAULT_IMAGE_NAME)
@click.option("--pubkey", default=signatures.DEFAULT_PUBKEY_LOCATION)
def store_signatures(image: str, pubkey: str) -> None:
manifest_digest = registry.get_manifest_digest(image)
sigs = signatures.get_remote_signatures(image, manifest_digest)
signatures.verify_signatures(sigs, manifest_digest, pubkey)
signatures.store_signatures(sigs, manifest_digest, pubkey, update_logindex=False)
click.echo(f"✅ Signatures has been verified and stored locally")
@main.command()
@click.argument("image_filename")
@click.option("--pubkey", default=signatures.DEFAULT_PUBKEY_LOCATION)