-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathchksign
More file actions
executable file
·38 lines (32 loc) · 1.08 KB
/
Copy pathchksign
File metadata and controls
executable file
·38 lines (32 loc) · 1.08 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
#!/bin/sh
#
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>.
#
# Copyright 2021 Jeremy Brubaker <jbru362@gmail.com>
#
# abstract: verify a SSH-key signed file
#
# Usage: chksign <filename> <signers email>
#
allowed_signers="$HOME/.ssh/allowed_signers"
if [ -z "$1" ]; then
printf "No filename to check provided. Exiting\n" >&2
exit 1
fi
if [ -z "$2" ]; then
printf "No signer email provided. Exiting\n" >&2
exit 1
fi
sig="$1.sig"
ssh-keygen -Y verify -f "$allowed_signers" -I "$2" -n file -s "$sig" < "$1"