From 6b86520bf45f202df0a77265ac6e0b0ffc412bb7 Mon Sep 17 00:00:00 2001
From: David Michael <david.michael@coreos.com>
Date: Thu, 30 Mar 2017 14:02:28 -0700
Subject: [PATCH] release_util: store file signatures in their own directory

This allows signing files under paths owned by other users.
---
 build_library/release_util.sh | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/build_library/release_util.sh b/build_library/release_util.sh
index fce5072f3f..263667a655 100644
--- a/build_library/release_util.sh
+++ b/build_library/release_util.sh
@@ -110,15 +110,17 @@ sign_and_upload_files() {
     local sigs=()
     if [[ -n "${FLAGS_sign}" ]]; then
         local file
+        local sigdir=$(mktemp --directory)
+        trap "rm -rf ${sigdir}" RETURN
         for file in "$@"; do
             if [[ "${file}" =~ \.(asc|gpg|sig)$ ]]; then
                 continue
             fi
 
-            rm -f "${file}.sig"
             gpg --batch --local-user "${FLAGS_sign}" \
+                --output "${sigdir}/${file##*/}.sig" \
                 --detach-sign "${file}" || die "gpg failed"
-            sigs+=( "${file}.sig" )
+            sigs+=( "${sigdir}/${file##*/}.sig" )
         done
     fi