From a03c66469b837276a9843f840f0f9e2ee0517a20 Mon Sep 17 00:00:00 2001
From: Mohan Boddu <mboddu@redhat.com>
Date: Jul 05 2017 21:27:49 +0000
Subject: Dont sign the checksums if they are already signed


Fixes #6832

During staging GOLD compose sometimes we end up running stage-release.sh
multiple times which makes the checksums sign again. This will avoid
doing that.

Signed-off-by: Mohan Boddu <mboddu@redhat.com>

---

diff --git a/scripts/stage-release.sh b/scripts/stage-release.sh
index 8e7a936..9932125 100644
--- a/scripts/stage-release.sh
+++ b/scripts/stage-release.sh
@@ -26,8 +26,12 @@ fi
 BASE="/mnt/koji/compose/"
 
 for checksum in $(find $BASE/$SHORTRELEASEVER/$COMPOSEID/compose/ -name  *CHECKSUM)
-do 
-  cat $checksum >/tmp/sum && NSS_HASH_ALG_SUPPORT=+MD5 sigul sign-text -o /tmp/signed $KEY /tmp/sum && chmod 644 /tmp/signed && sudo mv /tmp/signed $checksum
+do
+  if grep -q SHA256 $checksum; then
+    echo "$checksum is already signed"
+  else
+    cat $checksum >/tmp/sum && NSS_HASH_ALG_SUPPORT=+MD5 sigul sign-text -o /tmp/signed $KEY /tmp/sum && chmod 644 /tmp/signed && sudo mv /tmp/signed $checksum
+  fi
 done
 
 sudo -u ftpsync mkdir -p $DESTDIR/$RELPREFIX$RELEASEVER/