-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi,
Would not this dumb patch (applied to the latest mercurial repository)
avoid throwing cached data away when the gpg signature is not valid ?
Regards,
Cédric
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFG8F8oh8mVmA5jLbkRAgDYAKC1djHY++NkYlVwYlI2mXd+K1YJKwCgzCLp
1Fsw2dq9iGQuLeEnjTzDE2c=
=vq4S
-----END PGP SIGNATURE-----
diff -r 5533f6de130c ketchup
--- a/ketchup Mon Apr 23 17:28:29 2007 -0500
+++ b/ketchup Tue Sep 18 19:19:44 2007 -0400
@@ -335,16 +335,12 @@ def verify(url, f, sign):
sf = f + sign
if not download(url + sign, sf):
error("signature download failed")
- error("removing files...")
- os.unlink(f)
return 0
qprint("Verifying signature...")
r = os.system("%s --verify %s %s" % (options["gpg-path"], sf, f))
if r:
error("gpg returned %d" % r)
- error("removing files...")
- os.unlink(f)
os.unlink(sf)
return 0
