version 1.113, 2016/09/02 21:12:03 |
version 1.114, 2016/09/02 21:18:50 |
|
|
if (setvbuf(stdout, NULL, _IOLBF, 0) != 0) |
if (setvbuf(stdout, NULL, _IOLBF, 0) != 0) |
err(1, "setvbuf"); |
err(1, "setvbuf"); |
|
|
switch (verb) { |
|
case GENERATE: |
|
case SIGN: |
|
/* keep it all */ |
|
break; |
|
case CHECK: |
|
if (pledge("stdio rpath", NULL) == -1) |
|
err(1, "pledge"); |
|
break; |
|
case VERIFY: |
|
if ((embedded || gzip) |
|
&& (!msgfile || strcmp(msgfile, "-") != 0)) { |
|
if (pledge("stdio rpath wpath cpath", NULL) == -1) |
|
err(1, "pledge"); |
|
} else { |
|
if (pledge("stdio rpath", NULL) == -1) |
|
err(1, "pledge"); |
|
} |
|
break; |
|
default: |
|
if (pledge("stdio", NULL) == -1) |
|
err(1, "pledge"); |
|
break; |
|
} |
|
|
|
#ifndef VERIFYONLY |
#ifndef VERIFYONLY |
if (verb == CHECK) { |
if (verb == CHECK) { |
|
if (pledge("stdio rpath", NULL) == -1) |
|
err(1, "pledge"); |
if (!sigfile) |
if (!sigfile) |
usage("must specify sigfile"); |
usage("must specify sigfile"); |
check(pubkeyfile, sigfile, quiet, argc, argv); |
check(pubkeyfile, sigfile, quiet, argc, argv); |
|
|
switch (verb) { |
switch (verb) { |
#ifndef VERIFYONLY |
#ifndef VERIFYONLY |
case GENERATE: |
case GENERATE: |
|
/* no pledge */ |
if (!pubkeyfile || !seckeyfile) |
if (!pubkeyfile || !seckeyfile) |
usage("must specify pubkey and seckey"); |
usage("must specify pubkey and seckey"); |
generate(pubkeyfile, seckeyfile, rounds, comment); |
generate(pubkeyfile, seckeyfile, rounds, comment); |
break; |
break; |
case SIGN: |
case SIGN: |
|
/* no pledge */ |
if (gzip) |
if (gzip) |
zsign(seckeyfile, msgfile, sigfile); |
zsign(seckeyfile, msgfile, sigfile); |
else { |
else { |
|
|
break; |
break; |
#endif |
#endif |
case VERIFY: |
case VERIFY: |
|
if ((embedded || gzip) |
|
&& (!msgfile || strcmp(msgfile, "-") != 0)) { |
|
if (pledge("stdio rpath wpath cpath", NULL) == -1) |
|
err(1, "pledge"); |
|
} else { |
|
if (pledge("stdio rpath", NULL) == -1) |
|
err(1, "pledge"); |
|
} |
if (gzip) |
if (gzip) |
zverify(pubkeyfile, msgfile, sigfile, keytype); |
zverify(pubkeyfile, msgfile, sigfile, keytype); |
else { |
else { |
|
|
} |
} |
break; |
break; |
default: |
default: |
|
if (pledge("stdio", NULL) == -1) |
|
err(1, "pledge"); |
usage(NULL); |
usage(NULL); |
break; |
break; |
} |
} |