|
|
2ff057 |
#!/bin/sh
|
|
|
2ff057 |
|
|
|
2ff057 |
|
|
|
2ff057 |
for pkg in $*
|
|
|
2ff057 |
do
|
|
|
2ff057 |
if [ "$pkg" = "" -o ! -e "$pkg" ]; then
|
|
|
2ff057 |
echo "no package supplied" 1>&2
|
|
|
2ff057 |
exit 1
|
|
|
2ff057 |
fi
|
|
|
2ff057 |
|
|
|
2ff057 |
plaintext=`mktemp ${TMPDIR:-/tmp}/tgpg-$$.XXXXXX`
|
|
|
2ff057 |
detached=`mktemp ${TMPDIR:-/tmp}/tgpg-$$.XXXXXX`
|
|
|
2ff057 |
|
|
|
2ff057 |
# --- Extract detached signature
|
|
|
2ff057 |
rpm -qp -vv --qf '%{siggpg:armor}' $pkg > $detached
|
|
|
2ff057 |
|
|
|
2ff057 |
# --- Figger the offset of header+payload in the package
|
|
|
2ff057 |
leadsize=96
|
|
|
2ff057 |
o=`expr $leadsize + 8`
|
|
|
2ff057 |
|
|
|
2ff057 |
set `od -j $o -N 8 -t u1 $pkg`
|
|
|
2ff057 |
il=`expr 256 \* \( 256 \* \( 256 \* $2 + $3 \) + $4 \) + $5`
|
|
|
2ff057 |
dl=`expr 256 \* \( 256 \* \( 256 \* $6 + $7 \) + $8 \) + $9`
|
|
|
2ff057 |
|
|
|
2ff057 |
sigsize=`expr 8 + 16 \* $il + $dl`
|
|
|
2ff057 |
o=`expr $o + $sigsize + \( 8 - \( $sigsize \% 8 \) \) \% 8`
|
|
|
2ff057 |
|
|
|
2ff057 |
# --- Extract header+payload
|
|
|
2ff057 |
dd if=$pkg ibs=$o skip=1 2>/dev/null > $plaintext
|
|
|
2ff057 |
|
|
|
2ff057 |
# --- Verify DSA signature using gpg
|
|
|
2ff057 |
gpg --batch -vv --debug 0xfc02 --verify $detached $plaintext
|
|
|
2ff057 |
|
|
|
2ff057 |
# --- Clean up
|
|
|
2ff057 |
rm -f $detached $plaintext
|
|
|
2ff057 |
done
|