From 03b1adbe2baab4c68d231441447c16c253b56a37 Mon Sep 17 00:00:00 2001
From: Marcus Hoffmann <bubu@bubu1.eu>
Date: Fri, 16 Oct 2020 22:50:29 +0200
Subject: [PATCH] don't include .idsig files into the index

.idsig files contain an apksig v4 (https://source.android.com/security/apksigning/v4)
new versions of apksigner make this signature by default and it ends up
in /repo. Without this patch it would be included into the index as a
file to be downloaded by users. F-Droid Client crashes when it
encounters such an apk entry.

It's fine to have these signature files in the repo though, maybe
fdroidclient can make use of them at some point in the future (they are
intended to support streaming app installations).
---
 fdroidserver/common.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/fdroidserver/common.py b/fdroidserver/common.py
index 04867a7f..ee093778 100644
--- a/fdroidserver/common.py
+++ b/fdroidserver/common.py
@@ -3731,6 +3731,7 @@ def is_repo_file(filename):
     return os.path.isfile(filename) \
         and not filename.endswith(b'.asc') \
         and not filename.endswith(b'.sig') \
+        and not filename.endswith(b'.idsig') \
         and not filename.endswith(b'.log.gz') \
         and os.path.basename(filename) not in [
             b'index.jar',