Browse Source

Merge #182: Make verification program configurable for gverify

9231b6d Make verification program configurable for gverify (Wladimir J. van der Laan)
pull/188/head
Devrandom 2 years ago
parent
commit
da56381af9
No account linked to committer's email address
1 changed files with 8 additions and 2 deletions
  1. 8
    2
      bin/gverify

+ 8
- 2
bin/gverify View File

@@ -50,6 +50,10 @@ OptionParser.new do |opts|
opts.on("-c SIGNER", "--compare-to SIGNER", "compare other manifests to SIGNER's, if not given pick first") do |v|
@options[:compareto] = v
end

opts.on("-p PROG", "--verify-program PROG", "specify verification program to use (default is gpg)") do |v|
@options[:program] = v
end
end.parse!

base_dir = Pathname.new(__FILE__).expand_path.dirname.parent
@@ -71,6 +75,8 @@ release = sanitize(release, "release")
verbose = @options[:verbose]
bold = ['', ''] unless @options[:markup]

program = @options[:program] || "gpg"

release_path = File.join(destination, release)

File.exists?(release_path) or raise "#{release_path} does not exist"
@@ -107,8 +113,8 @@ Dir.foreach(release_path) do |signer_dir|
end

result = YAML.load_file(result_path)
system("gpg --keyserver pgp.mit.edu --recv-keys `gpg --quiet --batch --verify \"#{File.join(signer_path, 'signature.pgp')}\" \"#{result_path}\" 2>&1 | head -n1 | grep \"key ID\" | awk '{ print $15 }'` > /dev/null 2>&1")
out = `gpg --quiet --batch --verify \"#{sig_path}\" \"#{result_path}\" 2>&1`
system("#{program} --keyserver pgp.mit.edu --recv-keys `#{program} --quiet --batch --verify \"#{File.join(signer_path, 'signature.pgp')}\" \"#{result_path}\" 2>&1 | head -n1 | grep \"key ID\" | awk '{ print $15 }'` > /dev/null 2>&1")
out = `#{program} --quiet --batch --verify \"#{sig_path}\" \"#{result_path}\" 2>&1`
if $? != 0
out.each_line do |line|
if line =~ /^gpg: Signature made/

Loading…
Cancel
Save