makepkg: print "SKIP" for signature checksums

There are valid reasons for a source files PGP signature to be changed (expired key, expired signature, additional person signing...). Thus providing a checksum for signature files can potentially cause a PKGBUILD to require unnecessary updating. Avoid this issue by using "SKIP" for the signature checksum. Fixes FS#31590. Signed-off-by: Allan McRae <allan@archlinux.org>
author: Allan McRae <allan@archlinux.org> 2012-09-20 14:00:47 +0200
committer: Allan McRae <allan@archlinux.org> 2012-11-27 06:16:15 +0100
commit: 93148d0879c501235a51c0f9f5f7e457c6efd445 (patch)
tree: 72292e810b108b1b18f49dbea776481965fad559 /scripts/makepkg.sh.in
parent: fbf96203ab4eeb41953022b1dd3f6835fdbf0b6d (diff)
download: pacman-93148d0879c501235a51c0f9f5f7e457c6efd445.tar.gz
pacman-93148d0879c501235a51c0f9f5f7e457c6efd445.tar.xz
1 files changed, 8 insertions, 4 deletions
diff --git a/scripts/makepkg.sh.in b/scripts/makepkg.sh.in
index fce75588..5e8ada3a 100644
--- a/scripts/makepkg.sh.in
+++ b/scripts/makepkg.sh.in
@@ -1049,10 +1049,14 @@ generate_checksums() {
 					sum="SKIP"
 					;;
 				*)
-					local file
-					file="$(get_filepath "$netfile")" || missing_source_file "$netfile"
-					sum="$(openssl dgst -${integ} "$file")"
-					sum=${sum##* }
+					if [[ ! $netfile = *.@(sig?(n)|asc) ]]; then
+						local file
+						file="$(get_filepath "$netfile")" || missing_source_file "$netfile"
+						sum="$(openssl dgst -${integ} "$file")"
+						sum=${sum##* }
+					else
+						sum="SKIP"
+					fi
 					;;
 			esac
author	Allan McRae <allan@archlinux.org>	2012-09-20 14:00:47 +0200
committer	Allan McRae <allan@archlinux.org>	2012-11-27 06:16:15 +0100
commit	93148d0879c501235a51c0f9f5f7e457c6efd445 (patch)
tree	72292e810b108b1b18f49dbea776481965fad559 /scripts/makepkg.sh.in
parent	fbf96203ab4eeb41953022b1dd3f6835fdbf0b6d (diff)
download	pacman-93148d0879c501235a51c0f9f5f7e457c6efd445.tar.gz pacman-93148d0879c501235a51c0f9f5f7e457c6efd445.tar.xz