|author||Luke Shumaker <email@example.com>||2015-05-31 13:28:57 -0600|
|committer||Luke Shumaker <firstname.lastname@example.org>||2015-05-31 13:37:23 -0600|
librefetch: Don't try to use makepkg to create .sig files.
Diffstat (limited to 'src/librefetch/librefetch.8.ronn')
1 files changed, 6 insertions, 2 deletions
diff --git a/src/librefetch/librefetch.8.ronn b/src/librefetch/librefetch.8.ronn
index da5ea60..7d3550f 100644
@@ -85,8 +85,12 @@ ensure that as long as the same directory contents go in, an identical
tarball will come out--the checksum of the file should not change
based on when it is built or who builds it.
-The `SRCBUILD` is either created, or sanitized if it already exists,
-then fed to a modified version of `makepkg(8)`.
+The `SRCBUILD` is either created, or sanitized if it already exists.
+If the output filename does not end with `.sig` or `.sig.part`, then
+the `SRCBUILD` is fed to a modified version of `makepkg(8)`. If the
+output filename does end with `.sig` or `.sig.part`, then it uses GPG
+to create a signature. If the file it is trying to sign does not
+exist yet, librefetch recurses on itself to create it.
The reason `makepkg` must be modified is that we need the resulting
tarball to be deterministic (as well as not containing package