summaryrefslogtreecommitdiffstats
path: root/.travis/decrypt-if-have-key
diff options
context:
space:
mode:
Diffstat (limited to '.travis/decrypt-if-have-key')
-rwxr-xr-x.travis/decrypt-if-have-key33
1 files changed, 33 insertions, 0 deletions
diff --git a/.travis/decrypt-if-have-key b/.travis/decrypt-if-have-key
new file mode 100755
index 00000000..7fcab897
--- /dev/null
+++ b/.travis/decrypt-if-have-key
@@ -0,0 +1,33 @@
+#!/bin/bash
+
+set -e
+
+# Decrypt our private files; changes to this file should be inspected
+# closely to ensure they do not create information leaks
+
+eval key="\${encrypted_${1}_key}"
+eval iv="\${encrypted_${1}_iv}"
+
+if [ ! "$key" ]
+then
+ echo "No aes key present - skipping decryption"
+ exit 0
+fi
+
+for i in .travis/*.enc
+do
+ u=$(echo $i | sed -e 's/.enc$//')
+ openssl aes-256-cbc -K "$key" -iv "$iv" -in $i -out $u -d
+done
+
+if [ -f .travis/travis_rsa ]
+then
+ echo "ssh key present - loading to agent"
+ # add key, then remove to prevent leaks
+ chmod 600 .travis/travis_rsa
+ ssh-add .travis/travis_rsa
+ rm -f .travis/travis_rsa
+ touch /tmp/ssh-key-loaded
+else
+ echo "No ssh key present - skipping agent start"
+fi