Merge pull request #4963 from guggero/verify-no-key-fix

scripts: don't fail signature verification on missing public key
2025-03-03 17:26:57 +01:00 · 2021-01-28 14:52:22 +01:00 · 2021-01-28 14:52:22 +01:00 · 688a8045f0
commit 688a8045f0
parent 91364056f7 734441d6c0
1 changed files with 7 additions and 4 deletions
--- a/scripts/verify-install.sh
+++ b/scripts/verify-install.sh
@ -108,14 +108,17 @@ NUM_CHECKS=0
 for signature in $SIGNATURES; do
  # First make sure the downloaded signature file is valid.
  echo "Verifying $signature"
-  if ! gpg --verify "$signature" 2>&1 | grep -q "Good signature"; then
+  if gpg --verify "$signature" 2>&1 | grep -q "Good signature"; then
+    echo "Signature for $signature checks out: "
+    gpg --verify "$signature" 2>&1 | grep "using"
+  elif gpg --verify "$signature" 2>&1 | grep -q "No public key"; then
+    echo "Unable to verify signature $signature, no key available, skipping"
+    continue
+  else
    echo "ERROR: Did not get valid signature for $signature!"
    exit 1
  fi

-  echo "Signature for $signature checks out: "
-  gpg --verify "$signature" 2>&1 | grep "using"
-
  echo ""

  # Then make sure that the hash of the installed binaries can be found in the