emo/xbps
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

libxbps: stop and error out if pkg signature is not valid.

Browse Source
This commit is contained in:
Juan RP 2015-05-09 06:27:03 +02:00
parent b22d557287
commit da74e3dd9e
2 changed files with 5 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
NEWS
View File

@ -1,5 +1,8 @@
xbps-0.45 (???): xbps-0.45 (???):
* libxbps: if a pkg signature file cannot be verified, don't continue processing
other files, stop and return error immediately.
* xbps-remove(8): fixed regression while removing recursively packages, don't remove * xbps-remove(8): fixed regression while removing recursively packages, don't remove
all package orphans, this task belongs to -o not -R. all package orphans, this task belongs to -o not -R.

5
lib/transaction_commit.c
View File

@ -95,10 +95,9 @@ check_binpkgs(struct xbps_handle *xhp, xbps_object_iterator_t iter)
"%s: verifying RSA signature...", pkgver); "%s: verifying RSA signature...", pkgver);
if (!xbps_verify_file_signature(repo, binfile)) { if (!xbps_verify_file_signature(repo, binfile)) {
rv = errno; rv = EPERM;
xbps_set_cb_state(xhp, XBPS_STATE_VERIFY_FAIL, rv, pkgver, xbps_set_cb_state(xhp, XBPS_STATE_VERIFY_FAIL, rv, pkgver,
"%s: the RSA signature is not valid: %s", pkgver, "%s: the RSA signature is not valid!", pkgver);
strerror(rv));
free(binfile); free(binfile);
break; break;
} }