release_util: store file signatures in their own directory

This allows signing files under paths owned by other users.
2025-09-22 14:11:07 +02:00 · 2017-03-30 14:02:28 -07:00 · 2017-03-30 14:02:28 -07:00 · 6b86520bf4
commit 6b86520bf4
parent 66dca6ab85
1 changed files with 4 additions and 2 deletions
--- a/build_library/release_util.sh
+++ b/build_library/release_util.sh
@ -110,15 +110,17 @@ sign_and_upload_files() {
    local sigs=()
    if [[ -n "${FLAGS_sign}" ]]; then
        local file
+        local sigdir=$(mktemp --directory)
+        trap "rm -rf ${sigdir}" RETURN
        for file in "$@"; do
            if [[ "${file}" =~ \.(asc|gpg|sig)$ ]]; then
                continue
            fi

-            rm -f "${file}.sig"
            gpg --batch --local-user "${FLAGS_sign}" \
+                --output "${sigdir}/${file##*/}.sig" \
                --detach-sign "${file}" || die "gpg failed"
-            sigs+=( "${file}.sig" )
+            sigs+=( "${sigdir}/${file##*/}.sig" )
        done
    fi