gpg --verify multiple files

Phorize · 06-22-2011, 01:57 AM

Hi all.

All of the discussion about slackware and kde prompted me to rsync alien's kde 4.6 packages (thanks for these by the way!).

Each directory contains the .txz packages and associated .asc (all same signature)and md5s.

I want to avoid doing gpg --verify whatever.asc individually for multiple files. Likewise for md5sum -c whatever.md5.

Can anyone tell me a nice way of running run gpg --verify and md5sum on all files in the directory? I have been playing with wildcards but can't get it right.

Best,

Kris

Thom1b · 06-22-2011, 02:02 AM

Code:

for i in *.asc ; do gpg --verify $i ; done

Phorize · 06-22-2011, 02:12 AM

Quote:

Originally Posted by Thom1b

Code:

for i in *.asc ; do gpg --verify $i ; done

Wow, that was fast. Thank you. This worked like a treat. I am going to dissect your command a bit to understand it. Out of interest, is there any other way of doing it, if so what makes this your preferred way?

Kris

Thom1b · 06-22-2011, 04:52 AM

gpg can't verify multiple files, so you just need to "loop" with "for" instruction, and test every .asc files automatically. Each .asc file is stored in "$i" variable, then gpg can verify $i.
It's a basic shell instruction.

Sorry for my bad english.

ruario · 06-22-2011, 04:59 AM

I would have used GNU Parallel since it would be faster than a loop, given that the verification would run in parallel

ls *.asc | parallel gpg --verify

Phorize · 06-22-2011, 05:18 AM

Quote:

Originally Posted by Thom1b

gpg can't verify multiple files, so you just need to "loop" with "for" instruction, and test every .asc files automatically. Each .asc file is stored in "$i" variable, then gpg can verify $i.
It's a basic shell instruction.

Sorry for my bad english.

I see. I'll forgive your actually functional english if you can forgive my n00b shell scripting.

Phorize · 06-22-2011, 05:26 AM

Quote:

Originally Posted by ruario

I would have used GNU Parallel since it would be faster than a loop, given that the verification would run in parallel

ls *.asc | parallel gpg --verify

Thanks, this seems like a nice way of doing this. I was actually messing around with wild cards and piping the output of ls to gpg, but didn't know that it couldn't handle multiple arguements.

wadsworth · 06-22-2011, 07:06 AM

gpg --verify-files *.asc

from the man page:
--verify-files
Identical to --multifile --verify

Or maybe this:
find . -name "*.asc" -exec gpg --verify-files {} +

mRgOBLIN · 06-22-2011, 07:25 AM

I have a script that I've used for some time.

It checks a slackware tree for valid asc files.

You invoke it with
Script [version]

e.g

Code:

gpgcheck.sh 64-13.1

It was a quick hack so no error checking and such but has served me well =)

Code:

#!/bin/sh
# gpgcheck.sh
# Search Slackware tree for gpg sigs and verify them.

(
cd /home/ftp/pub/slackware
find slackware${1}/ -type f -name "*.t?z.asc" -o -iname "*.md5.asc"|while read sig; do
    gpg -v $sig 2>&1
done | awk 'BEGIN {badcount=0;count=0}
                 /assuming/ {print "Checking "$6; file=$6;count++}
                 /BAD/ {print "\nWARNING!!! __BAD__ sig for " file"\n"; badcount++}
            END {print count " Total files with "badcount " Bad sigs"}'
)