From ca090e10d264e4999e321b0a0b43736a34aa11d9 Mon Sep 17 00:00:00 2001
From: Dave Reisner <dreisner@archlinux.org>
Date: Sun, 8 Apr 2012 14:03:27 -0400
Subject: pacman-key: avoid use of tempfile in verify_sig

Use --status-fd rather than --status-file to keep this contained in a
pipeline.

Signed-off-by: Dave Reisner <dreisner@archlinux.org>
---
 scripts/pacman-key.sh.in | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

(limited to 'scripts')

diff --git a/scripts/pacman-key.sh.in b/scripts/pacman-key.sh.in
index 1a2bac34..87d7658f 100644
--- a/scripts/pacman-key.sh.in
+++ b/scripts/pacman-key.sh.in
@@ -439,14 +439,10 @@ refresh_keys() {
 }
 
 verify_sig() {
-	local fd="$(mktemp)"
-	"${GPG_PACMAN[@]}" --status-file "${fd}" --verify $SIGNATURE
-	if ! grep -qE 'TRUST_(FULLY|ULTIMATE)' "${fd}"; then
-		rm -f "${fd}"
+	if ! "${GPG_PACMAN[@]}" --status-fd 1 --verify $SIGNATURE | grep -qE 'TRUST_(FULLY|ULTIMATE)'; then
 		error "$(gettext "The signature identified by %s could not be verified.")" "$SIGNATURE"
 		exit 1
 	fi
-	rm -f "${fd}"
 }
 
 updatedb() {
-- 
cgit v1.2.3