From 93148d0879c501235a51c0f9f5f7e457c6efd445 Mon Sep 17 00:00:00 2001
From: Allan McRae <allan@archlinux.org>
Date: Thu, 20 Sep 2012 22:00:47 +1000
Subject: makepkg: print "SKIP" for signature checksums

There are valid reasons for a source files PGP signature to be changed
(expired key, expired signature, additional person signing...). Thus
providing a checksum for signature files can potentially cause a
PKGBUILD to require unnecessary updating.

Avoid this issue by using "SKIP" for the signature checksum.
Fixes FS#31590.

Signed-off-by: Allan McRae <allan@archlinux.org>
---
 scripts/makepkg.sh.in | 12 ++++++++----
 1 file changed, 8 insertions(+), 4 deletions(-)

(limited to 'scripts')

diff --git a/scripts/makepkg.sh.in b/scripts/makepkg.sh.in
index fce75588..5e8ada3a 100644
--- a/scripts/makepkg.sh.in
+++ b/scripts/makepkg.sh.in
@@ -1049,10 +1049,14 @@ generate_checksums() {
 					sum="SKIP"
 					;;
 				*)
-					local file
-					file="$(get_filepath "$netfile")" || missing_source_file "$netfile"
-					sum="$(openssl dgst -${integ} "$file")"
-					sum=${sum##* }
+					if [[ ! $netfile = *.@(sig?(n)|asc) ]]; then
+						local file
+						file="$(get_filepath "$netfile")" || missing_source_file "$netfile"
+						sum="$(openssl dgst -${integ} "$file")"
+						sum=${sum##* }
+					else
+						sum="SKIP"
+					fi
 					;;
 			esac
 
-- 
cgit v1.2.3-24-g4f1b