1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
|
#!/bin/sh
set -eu
usage() {
rc=$1
if [ "$rc" -ne 0 ]; then
exec 1>&2
fi
printf 'Usage: %s <version>
Retrieve signing keys for upstream version <version> and store the minimized
version to debian/upstream/signing-key.asc.
Must be run from top level of source package.
' $0
exit "$rc"
}
keyurl() {
printf 'https://www.apache.org/dist/subversion/subversion-%s.KEYS' "$1"
}
SIGNING_KEY=debian/upstream/signing-key.asc
dh_testdir "$SIGNING_KEY"
UVER=
if [ "$#" -lt 1 ]; then
usage 1
fi
case "$1" in
-h|--help)
usage 0
;;
-*)
usage 1
;;
*)
UVER="$1"
shift
;;
esac
export GNUPGHOME="$(mktemp -d)"
trap "rm -r \"$GNUPGHOME\"" EXIT
FULLKEYS="$GNUPGHOME/fullkeys"
wget -nv -O "$FULLKEYS" "$(keyurl "$UVER")"
gpg --batch --quiet --import "$FULLKEYS"
: > "$SIGNING_KEY"
for fpr in $(gpg --with-colons --list-keys --fingerprint --fingerprint | awk -F: 'BEGIN { print_fpr = 0; } /^fpr:/{ if (print_fpr == 1) { printf "%s\n", $10; print_fpr = 0; } } /^pub:/{ print_fpr = 1; }' | sort); do
printf 'Exporting key for fingerprint %s...\n' "$fpr"
gpg --armor --export --export-options export-minimal,export-clean "$fpr" >> "$SIGNING_KEY"
done
|
