2
0
mirror of https://gitlab.com/ita1024/waf.git synced 2024-11-25 19:30:04 +01:00
waf/utils/verify-sig.py

57 lines
1.3 KiB
Python
Raw Normal View History

#! /usr/bin/env python
2017-01-21 13:28:06 +01:00
# encoding: utf-8
2015-01-01 16:24:54 +01:00
# Thomas Nagy, 2014-2015
"""
A simple file for verifying signatures in signed waf files
2017-01-21 13:28:06 +01:00
This script is meant for Python >= 2.6 and the encoding is bytes - latin-1
Distributing detached signatures is boring
"""
import sys, os, re, subprocess
if __name__ == '__main__':
try:
infile = sys.argv[1]
except IndexError:
infile = 'waf'
try:
outfile1 = sys.argv[2]
except IndexError:
outfile1 = infile + '-sig'
try:
outfile2 = sys.argv[3]
except IndexError:
outfile2 = outfile1 + '.asc'
f1 = open(outfile1, 'wb')
f2 = open(outfile2, 'wb')
f = open(infile, 'rb')
try:
txt = f.read()
2017-01-21 13:28:06 +01:00
lastline = txt.decode('latin-1').splitlines()[-1] # just the last line
if not lastline.startswith('#-----BEGIN PGP SIGNATURE-----'):
print("ERROR: there is no signature to verify in %r :-/" % infile)
sys.exit(1)
sigtext = lastline.replace('\\n', '\n') # convert newlines
sigtext = sigtext[1:] # omit the '# character'
2017-01-21 13:28:06 +01:00
sigtext = sigtext.encode('latin-1') # python3
f2.write(sigtext)
f1.write(txt[:-len(lastline) - 1]) # one newline character was eaten from splitlines()
finally:
f.close()
f1.close()
f2.close()
cmd = 'gpg --verify %s' % outfile2
print("-> %r" % cmd)
ret = subprocess.Popen(cmd, shell=True).wait()
sys.exit(ret)