Commit afc93f34 authored by Allan McRae's avatar Allan McRae Committed by Pierre Schmitz
Browse files

Always sign unsigned packages 



We do not allow packages to be uploaded without signatures so force
all unsigned packages to be signed.  This has the bonus of not
breaking makepkg signing support by requiring you use an internal
makepkg variable.

Signed-off-by: default avatarAllan McRae <allan@archlinux.org>
Signed-off-by: default avatarPierre Schmitz <pierre@archlinux.de>
parent 9ab0d945

commitpkg.in

+4 −8
Original line number Diff line number Diff line
@@ -143,21 +143,17 @@ for _arch in ${arch[@]}; do 
		uploads+=("$pkgfile")



		sigfile="${pkgfile}.sig"

		if [[ $SIGNPKG == 'y' && ! -f $sigfile ]]; then

		if [[ ! -f $sigfile ]]; then

			msg "Signing package ${pkgfile}..."

			if [[ -n $GPGKEY ]]; then

				SIGNWITHKEY="-u ${GPGKEY}"

			fi

			gpg --detach-sign --use-agent ${SIGNWITHKEY} "${pkgfile}" || die

		fi

		if [[ -f $sigfile ]]; then

		if ! gpg --verify "$sigfile" >/dev/null 2>&1; then

			die "Signature ${pkgfile}.sig is incorrect!"

		fi

		uploads+=("$sigfile")

		else

			die "Signature ${pkgfile}.sig was not found"

		fi

	done

done