git.oblomov.eu Git - git/blob - builtin/verify-tag.c

   1 /*
   2  * Builtin "git verify-tag"
   3  *
   4  * Copyright (c) 2007 Carlos Rica <jasampler@gmail.com>
   5  *
   6  * Based on git-verify-tag.sh
   7  */
   8 #include "cache.h"
   9 #include "builtin.h"
  10 #include "tag.h"
  11 #include "run-command.h"
  12 #include <signal.h>
  13 #include "parse-options.h"
  14 #include "gpg-interface.h"
  15
  16 static const char * const verify_tag_usage[] = {
  17                 "git verify-tag [-v|--verbose] <tag>...",
  18                 NULL
  19 };
  20
  21 static int run_gpg_verify(const char *buf, unsigned long size, int verbose)
  22 {
  23         int len;
  24
  25         len = parse_signature(buf, size);
  26         if (verbose)
  27                 write_in_full(1, buf, len);
  28
  29         if (size == len)
  30                 return error("no signature found");
  31
  32         return verify_signed_buffer(buf, len, buf + len, size - len, NULL);
  33 }
  34
  35 static int verify_tag(const char *name, int verbose)
  36 {
  37         enum object_type type;
  38         unsigned char sha1[20];
  39         char *buf;
  40         unsigned long size;
  41         int ret;
  42
  43         if (get_sha1(name, sha1))
  44                 return error("tag '%s' not found.", name);
  45
  46         type = sha1_object_info(sha1, NULL);
  47         if (type != OBJ_TAG)
  48                 return error("%s: cannot verify a non-tag object of type %s.",
  49                                 name, typename(type));
  50
  51         buf = read_sha1_file(sha1, &type, &size);
  52         if (!buf)
  53                 return error("%s: unable to read file.", name);
  54
  55         ret = run_gpg_verify(buf, size, verbose);
  56
  57         free(buf);
  58         return ret;
  59 }
  60
  61 int cmd_verify_tag(int argc, const char **argv, const char *prefix)
  62 {
  63         int i = 1, verbose = 0, had_error = 0;
  64         const struct option verify_tag_options[] = {
  65                 OPT__VERBOSE(&verbose, "print tag contents"),
  66                 OPT_END()
  67         };
  68
  69         git_config(git_default_config, NULL);
  70
  71         argc = parse_options(argc, argv, prefix, verify_tag_options,
  72                              verify_tag_usage, PARSE_OPT_KEEP_ARGV0);
  73         if (argc <= i)
  74                 usage_with_options(verify_tag_usage, verify_tag_options);
  75
  76         /* sometimes the program was terminated because this signal
  77          * was received in the process of writing the gpg input: */
  78         signal(SIGPIPE, SIG_IGN);
  79         while (i < argc)
  80                 if (verify_tag(argv[i++], verbose))
  81                         had_error = 1;
  82         return had_error;
  83 }