2019-09-08 19:29:00 +00:00
|
|
|
#!/bin/sh
|
2007-02-05 13:53:48 +00:00
|
|
|
|
|
|
|
# Generate GPG signatures on a PuTTY release/snapshot directory as
|
|
|
|
# delivered by Buildscr.
|
|
|
|
|
2015-09-02 17:30:10 +00:00
|
|
|
# Usage: sh sign.sh [-r] <builddir>
|
|
|
|
# e.g. sh sign.sh putty (probably in the build.out directory)
|
|
|
|
# or sh sign.sh -r 0.60 (-r means use the release keys)
|
2007-02-05 13:53:48 +00:00
|
|
|
|
|
|
|
set -e
|
|
|
|
|
2021-08-14 07:02:27 +00:00
|
|
|
keyname=B43979F89F446CFD
|
2017-07-03 06:38:20 +00:00
|
|
|
preliminary=false
|
2015-09-02 17:30:10 +00:00
|
|
|
|
2017-07-03 06:38:20 +00:00
|
|
|
while :; do
|
|
|
|
case "$1" in
|
|
|
|
-r)
|
|
|
|
shift
|
2021-08-14 07:02:27 +00:00
|
|
|
keyname=E4F83EA2AA4915EC
|
2017-07-03 06:38:20 +00:00
|
|
|
;;
|
|
|
|
-p)
|
|
|
|
shift
|
|
|
|
preliminary=true
|
|
|
|
;;
|
|
|
|
-*)
|
|
|
|
echo "Unknown option '$1'" >&2
|
|
|
|
exit 1
|
|
|
|
;;
|
|
|
|
*)
|
|
|
|
break
|
|
|
|
;;
|
|
|
|
esac
|
|
|
|
done
|
2015-09-02 17:30:10 +00:00
|
|
|
|
2007-02-05 13:53:48 +00:00
|
|
|
sign() {
|
|
|
|
# Check for the prior existence of the signature, so we can
|
|
|
|
# re-run this script if it encounters an error part way
|
|
|
|
# through.
|
2015-09-02 17:30:10 +00:00
|
|
|
echo "----- Signing $2 with key '$keyname'"
|
2007-02-05 13:53:48 +00:00
|
|
|
test -f "$3" || \
|
|
|
|
gpg --load-extension=idea "$1" -u "$keyname" -o "$3" "$2"
|
|
|
|
}
|
|
|
|
|
|
|
|
cd "$1"
|
2015-09-02 17:30:10 +00:00
|
|
|
echo "===== Signing with key '$keyname'"
|
2017-07-03 06:38:20 +00:00
|
|
|
if $preliminary; then
|
|
|
|
sign --clearsign sha512sums ../sha512sums-preliminary.gpg
|
|
|
|
else
|
|
|
|
for i in putty*src.zip putty*.tar.gz \
|
|
|
|
w32/*.exe w32/*.zip w32/*.msi \
|
|
|
|
w64/*.exe w64/*.zip w64/*.msi \
|
2019-03-20 07:42:20 +00:00
|
|
|
wa32/*.exe wa32/*.zip wa32/*.msi \
|
|
|
|
wa64/*.exe wa64/*.zip wa64/*.msi \
|
2017-07-03 06:38:20 +00:00
|
|
|
w32old/*.exe w32old/*.zip; do
|
|
|
|
sign --detach-sign "$i" "$i.gpg"
|
|
|
|
done
|
|
|
|
for i in md5sums sha1sums sha256sums sha512sums; do
|
|
|
|
sign --clearsign "$i" "$i.gpg"
|
|
|
|
done
|
|
|
|
fi
|