summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorKali Kaneko <kali@leap.se>2017-12-04 19:30:10 +0100
committerKali Kaneko <kali@leap.se>2017-12-04 19:30:10 +0100
commita6aefc0437e45f963b633b586a18f71ed4dca5be (patch)
tree19650adb6147ed8c448827eb03b6eed8f54a68bc
parentfb7eef011cc672f1884bcfcd4c859a549d8f3e49 (diff)
[pkg] verify openvpn sources
-rwxr-xr-xpkg/thirdparty/openvpn/build_openvpn.sh4
1 files changed, 4 insertions, 0 deletions
diff --git a/pkg/thirdparty/openvpn/build_openvpn.sh b/pkg/thirdparty/openvpn/build_openvpn.sh
index 02f7c134..9ec8295e 100755
--- a/pkg/thirdparty/openvpn/build_openvpn.sh
+++ b/pkg/thirdparty/openvpn/build_openvpn.sh
@@ -27,6 +27,7 @@ LZO="lzo-2.10"
ZLIB="zlib-1.2.11"
MBEDTLS="mbedtls-2.6.0"
OPENVPN="openvpn-2.4.4"
+OPENVPN_KEYS="https://swupdate.openvpn.net/community/keys/security.key.asc"
WGET="wget --prefer-family=IPv4"
DEST=$BASE/install
@@ -113,9 +114,12 @@ function build_lzo2()
function build_openvpn()
{
mkdir $SRC/openvpn && cd $SRC/openvpn
+ $WGET -q -O - $OPENVPN_KEYS | gpg --import
if [ ! -f $OPENVPN.tar.gz ]; then
$WGET http://swupdate.openvpn.org/community/releases/$OPENVPN.tar.gz
+ $WGET http://swupdate.openvpn.org/community/releases/$OPENVPN.tar.gz.asc
fi
+ gpg --verify $OPENVPN.tar.gz.asc && echo "[+] gpg verification ok"
tar zxvf $OPENVPN.tar.gz
cd $OPENVPN