148 lines
4.5 KiB
Bash
Executable File
148 lines
4.5 KiB
Bash
Executable File
#!/bin/sh
|
|
# Licensed to the Apache Software Foundation (ASF) under one or more
|
|
# contributor license agreements. See the NOTICE file distributed with
|
|
# this work for additional information regarding copyright ownership.
|
|
# The ASF licenses this file to You under the Apache License, Version 2.0
|
|
# (the "License"); you may not use this file except in compliance with
|
|
# the License. You may obtain a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS,
|
|
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
# See the License for the specific language governing permissions and
|
|
# limitations under the License.
|
|
#
|
|
# hash-sign.sh : hash and sign the specified files
|
|
#
|
|
# USAGE: hash-sign.sh file1 file2 ...
|
|
#
|
|
|
|
user=""
|
|
case "$1" in
|
|
-u)
|
|
shift
|
|
user="$1"
|
|
shift
|
|
;;
|
|
esac
|
|
|
|
allfiles=$*
|
|
|
|
|
|
split="---------------------------------------------------------------------"
|
|
|
|
echo $split
|
|
echo ""
|
|
echo "Generating MD5/SHA1 checksum files ..."
|
|
echo ""
|
|
|
|
# check for executables
|
|
gpg="`which gpg 2> /dev/null | head -1`"
|
|
pgp="`which pgp 2> /dev/null | head -1`"
|
|
openssl="`which openssl 2> /dev/null | head -1`"
|
|
md5sum="`which md5sum 2> /dev/null | head -1`"
|
|
sha1sum="`which sha1sum 2> /dev/null | head -1`"
|
|
md5="`which md5 2> /dev/null | head -1`"
|
|
sha1="`which sha1 2> /dev/null | head -1`"
|
|
|
|
# if found we use openssl for generating the checksums
|
|
# and convert the results into machine-readable format.
|
|
if test -x "${openssl}"; then
|
|
for file in ${allfiles}; do
|
|
if test -f "${file}"; then
|
|
echo "openssl: creating md5 checksum file for ${file} ..."
|
|
${openssl} md5 ${file} |\
|
|
sed -e 's#^MD5(\(.*\))= \([0-9a-f]*\)$#\2 *\1#' > ${file}.md5
|
|
echo "openssl: creating sha1 checksum file for ${file} ..."
|
|
${openssl} sha1 ${file} |\
|
|
sed -e 's#^SHA1(\(.*\))= \([0-9a-f]*\)$#\2 *\1#' > ${file}.sha1
|
|
fi
|
|
done
|
|
# no openssl found - check if we have gpg
|
|
elif test -x "${gpg}"; then
|
|
for file in ${allfiles}; do
|
|
if test -f "${file}"; then
|
|
echo "gpg: creating md5 checksum file for ${file} ..."
|
|
${gpg} --print-md md5 ${file} |\
|
|
sed -e '{N;s#\n##;}' |\
|
|
sed -e 's#\(.*\): \(.*\)#\2::\1#;s#[\r\n]##g;s# ##g' \
|
|
-e 'y#ABCDEF#abcdef#;s#::# *#' > ${file}.md5
|
|
echo "gpg: creating sha1 checksum file for ${file} ..."
|
|
${gpg} --print-md sha1 ${file} |\
|
|
sed -e '{N;s#\n##;}' |\
|
|
sed -e 's#\(.*\): \(.*\)#\2::\1#;s#[\r\n]##g;s# ##g' \
|
|
-e 'y#ABCDEF#abcdef#;s#::# *#' > ${file}.sha1
|
|
fi
|
|
done
|
|
else
|
|
# no openssl or gpg found - check for md5sum
|
|
if test -x "${md5sum}"; then
|
|
for file in ${allfiles}; do
|
|
if test -f "${file}"; then
|
|
echo "md5sum: creating md5 checksum file for ${file} ..."
|
|
${md5sum} -b ${file} > ${file}.md5
|
|
fi
|
|
done
|
|
# no openssl or gpg found - check for md5
|
|
elif test -x "${md5}"; then
|
|
for file in ${allfiles}; do
|
|
if test -f "${file}"; then
|
|
echo "md5: creating md5 checksum file for ${file} ..."
|
|
${md5} -r ${file} | sed -e 's# # *#' > ${file}.md5
|
|
fi
|
|
done
|
|
fi
|
|
# no openssl or gpg found - check for sha1sum
|
|
if test -x "${sha1sum}"; then
|
|
for file in ${allfiles}; do
|
|
if test -f "${file}"; then
|
|
echo "sha1sum: creating sha1 checksum file for ${file} ..."
|
|
${sha1sum} -b ${file} > ${file}.sha1
|
|
fi
|
|
done
|
|
# no openssl or gpg found - check for sha1
|
|
elif test -x "${sha1}"; then
|
|
for file in ${allfiles}; do
|
|
if test -f "${file}"; then
|
|
echo "sha1: creating sha1 checksum file for ${file} ..."
|
|
${sha1} -r ${file} | sed -e 's# # *#' > ${file}.sha1
|
|
fi
|
|
done
|
|
fi
|
|
fi
|
|
|
|
echo $split
|
|
echo ""
|
|
echo "Signing the files ..."
|
|
echo ""
|
|
|
|
# if found we use pgp for signing the files
|
|
if test -x "${pgp}"; then
|
|
if test -n "${user}"; then
|
|
args="-u ${user}"
|
|
fi
|
|
for file in ${allfiles}; do
|
|
if test -f "${file}"; then
|
|
echo "pgp: creating asc signature file for ${file} ..."
|
|
${pgp} -sba ${file} ${args}
|
|
fi
|
|
done
|
|
# no pgp found - check for gpg
|
|
elif test -x "${gpg}"; then
|
|
if test -z "${user}"; then
|
|
args="--default-key ${args}"
|
|
else
|
|
args="-u ${user} ${args}"
|
|
fi
|
|
for file in ${allfiles}; do
|
|
if test -f "${file}"; then
|
|
echo "gpg: creating asc signature file for ${file} ..."
|
|
${gpg} --armor ${args} --detach-sign ${file}
|
|
fi
|
|
done
|
|
else
|
|
echo "PGP or GnuPG not found! Not signing release!"
|
|
fi
|