From 9b0a2233dbe8746015b97e97cef890d38fb44b0f Mon Sep 17 00:00:00 2001
From: Ludovic Courtès <ludo@gnu.org>
Date: Sat, 22 Mar 2014 22:46:11 +0100
Subject: authenticate: Support reading the hash or key from stdin.

* guix/scripts/authenticate.scm (guix-authenticate): Add clauses
  for ("rsautl" "-sign" "-inkey" key) and ("rsautl" "-verify" "-inkey" _
  "-pubin").
* tests/guix-authenticate.sh (hash): Add test using -sign and -verify in
  a pipeline.
---
 guix/scripts/authenticate.scm | 8 ++++++++
 1 file changed, 8 insertions(+)

(limited to 'guix/scripts/authenticate.scm')

diff --git a/guix/scripts/authenticate.scm b/guix/scripts/authenticate.scm
index 8bc148d730..62717bb09c 100644
--- a/guix/scripts/authenticate.scm
+++ b/guix/scripts/authenticate.scm
@@ -90,14 +90,22 @@ to stdout upon success."
 
 (define (guix-authenticate . args)
   (match args
+    ;; As invoked by guix-daemon.
     (("rsautl" "-sign" "-inkey" key "-in" hash-file)
      (call-with-input-file hash-file
        (lambda (port)
          (sign-with-key key port))))
+    ;; As invoked by Nix/Crypto.pm (used by Hydra.)
+    (("rsautl" "-sign" "-inkey" key)
+     (sign-with-key key (current-input-port)))
+    ;; As invoked by guix-daemon.
     (("rsautl" "-verify" "-inkey" _ "-pubin" "-in" signature-file)
      (call-with-input-file signature-file
        (lambda (port)
          (validate-signature port))))
+    ;; As invoked by Nix/Crypto.pm (used by Hydra.)
+    (("rsautl" "-verify" "-inkey" _ "-pubin")
+     (validate-signature (current-input-port)))
     (("--help")
      (display (_ "Usage: guix authenticate OPTION...
 Sign or verify the signature on the given file.  This tool is meant to
-- 
cgit v1.2.3