Browse Source

Merge #182: Make verification program configurable for gverify

9231b6d Make verification program configurable for gverify (Wladimir J. van der Laan)
pull/188/head
Devrandom 4 years ago
parent
commit
da56381af9
No known key found for this signature in database
GPG Key ID: E3AAB28B27F5CF4A
  1. 10
      bin/gverify

10
bin/gverify

@ -50,6 +50,10 @@ OptionParser.new do |opts| @@ -50,6 +50,10 @@ OptionParser.new do |opts|
opts.on("-c SIGNER", "--compare-to SIGNER", "compare other manifests to SIGNER's, if not given pick first") do |v|
@options[:compareto] = v
end
opts.on("-p PROG", "--verify-program PROG", "specify verification program to use (default is gpg)") do |v|
@options[:program] = v
end
end.parse!
base_dir = Pathname.new(__FILE__).expand_path.dirname.parent
@ -71,6 +75,8 @@ release = sanitize(release, "release") @@ -71,6 +75,8 @@ release = sanitize(release, "release")
verbose = @options[:verbose]
bold = ['', ''] unless @options[:markup]
program = @options[:program] || "gpg"
release_path = File.join(destination, release)
File.exists?(release_path) or raise "#{release_path} does not exist"
@ -107,8 +113,8 @@ Dir.foreach(release_path) do |signer_dir| @@ -107,8 +113,8 @@ Dir.foreach(release_path) do |signer_dir|
end
result = YAML.load_file(result_path)
system("gpg --keyserver pgp.mit.edu --recv-keys `gpg --quiet --batch --verify \"#{File.join(signer_path, 'signature.pgp')}\" \"#{result_path}\" 2>&1 | head -n1 | grep \"key ID\" | awk '{ print $15 }'` > /dev/null 2>&1")
out = `gpg --quiet --batch --verify \"#{sig_path}\" \"#{result_path}\" 2>&1`
system("#{program} --keyserver pgp.mit.edu --recv-keys `#{program} --quiet --batch --verify \"#{File.join(signer_path, 'signature.pgp')}\" \"#{result_path}\" 2>&1 | head -n1 | grep \"key ID\" | awk '{ print $15 }'` > /dev/null 2>&1")
out = `#{program} --quiet --batch --verify \"#{sig_path}\" \"#{result_path}\" 2>&1`
if $? != 0
out.each_line do |line|
if line =~ /^gpg: Signature made/

Loading…
Cancel
Save