blob: fddaae83994b35328f4f3aa026d3cfeb7cf66b32 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
|
#!/bin/bash
set -e
set -o pipefail
if [ "$#" -ne 2 ]; then
echo "Usage: $0 update_archive_file dsa_priv.pem"
echo "This is an old DSA signing script for deprecated DSA keys."
echo "Do not use this for new applications."
exit 1
fi
openssl=/usr/bin/openssl
version=`$openssl version`
if [[ $version =~ "OpenSSL 0.9" ]]; then
# pre-10.13 system: Fall back to OpenSSL DSS1 digest because it does not like the -sha1 option
$openssl dgst -sha1 -binary < "$1" | $openssl dgst -dss1 -sign "$2" | $openssl enc -base64
else
# 10.13 and later: Use LibreSSL SHA1 digest
$openssl dgst -sha1 -binary < "$1" | $openssl dgst -sha1 -sign "$2" | $openssl enc -base64
fi
|
