2aa3527fdc
to match the editorconfig awk code in contrib/sign.sh and contrib/sigtest.sh reformatted as gawk does
56 lines
1022 B
Bash
Executable File
56 lines
1022 B
Bash
Executable File
#!/bin/sh
|
|
|
|
set -e
|
|
|
|
if [ $# -ne 2 ] || [ "-h" = "$1" ] || [ "--help" = "$1" ] || [ ! -r "$1" ] || [ ! -r "$2" ]; then
|
|
cat <<EOHELP
|
|
Usage: $0 <secret> <manifest>
|
|
|
|
sign.sh adds lines to a manifest to indicate the approval
|
|
of the integrity of the firmware as required for automated
|
|
updates. The first argument <secret> references a file harboring
|
|
the private key of a public-private key pair of a developer
|
|
that referenced by its public key in the site configuration.
|
|
The script may be performed multiple times to the same document
|
|
to indicate an approval by multiple developers.
|
|
|
|
See also
|
|
* ecdsautils on https://github.com/freifunk-gluon/ecdsautils
|
|
|
|
EOHELP
|
|
exit 1
|
|
fi
|
|
|
|
SECRET="$1"
|
|
|
|
manifest="$2"
|
|
upper="$(mktemp)"
|
|
lower="$(mktemp)"
|
|
|
|
trap 'rm -f "$upper" "$lower"' EXIT
|
|
|
|
awk 'BEGIN {
|
|
sep = 0
|
|
}
|
|
|
|
/^---$/ {
|
|
sep = 1;
|
|
next
|
|
}
|
|
|
|
{
|
|
if(sep == 0) {
|
|
print > "'"$upper"'"
|
|
} else {
|
|
print > "'"$lower"'"
|
|
}
|
|
}' "$manifest"
|
|
|
|
ecdsasign "$upper" < "$SECRET" >> "$lower"
|
|
|
|
(
|
|
cat "$upper"
|
|
echo ---
|
|
cat "$lower"
|
|
) > "$manifest"
|