[pve-devel] [PATCH dab-pve-appliances 2/2] pmg: optionally verify cvd files with sigtool

Stoiko Ivanov s.ivanov at proxmox.com
Thu Jan 2 17:53:38 CET 2020


sigtool (1)  is clamav's utility to manipulate and verify cvd files.
It is shipped in the clamav package, which is not installed inside
pmg (it uses the daemonized version - clamav-daemon).

This patch verifies the downloaded cvd-files if sigtool is installed on the
build host and skips the verification if not (in order to not depend on an
installed clamav package).

Signed-off-by: Stoiko Ivanov <s.ivanov at proxmox.com>
---
 debian-10.0-pmg-64/Makefile | 1 +
 1 file changed, 1 insertion(+)

diff --git a/debian-10.0-pmg-64/Makefile b/debian-10.0-pmg-64/Makefile
index b2ff0b0..87d5e51 100644
--- a/debian-10.0-pmg-64/Makefile
+++ b/debian-10.0-pmg-64/Makefile
@@ -33,3 +33,4 @@ dist-clean:
 ${CVD_FILES}:
 	curl -L --silent --show-error --fail  --time-cond $@ -o $@.tmp http://database.clamav.net/$@
 	[ -f $@.tmp ] && mv $@.tmp $@ || true
+	if [ -x /usr/bin/sigtool ]; then sigtool -i $@; else echo "skipping verification of $@"; fi
-- 
2.20.1




More information about the pve-devel mailing list