Perform package verification at package load time

Both md5sum verification and PGP verification can and should be done at package load time. This allows verification to happen as early as possible for packages provided by filename and loaded in the frontend, and moves more stuff out of sync_commit that doesn't really belong there. This should also set the stage for simplified parallel loading of packages later down the road. Signed-off-by: Dan McGee <dan@archlinux.org>
author: Dan McGee <dan@archlinux.org> 2011-04-21 23:39:01 -0500
committer: Dan McGee <dan@archlinux.org> 2011-04-24 10:48:34 -0500
commit: 4d63ebe2fbe932412a7b8340af49bf30c8e17a91 (patch)
tree: 83555011c2e8205a4243ac389647af50e964761e /src/pacman/upgrade.c
parent: 1cf79eb8c8c7894d238cd906613dc1cd5b7ced1a (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/src/pacman/upgrade.c b/src/pacman/upgrade.c
index 5b894001..0ffc94c4 100644
--- a/src/pacman/upgrade.c
+++ b/src/pacman/upgrade.c
@@ -42,6 +42,7 @@
 int pacman_upgrade(alpm_list_t *targets)
 {
 	alpm_list_t *i, *data = NULL;
+	pgp_verify_t check_sig = alpm_option_get_default_sigverify();
 	int retval = 0;
 
 	if(targets == NULL) {
@@ -75,7 +76,7 @@ int pacman_upgrade(alpm_list_t *targets)
 		char *targ = alpm_list_getdata(i);
 		pmpkg_t *pkg;
 
-		if(alpm_pkg_load(targ, 1, &pkg) != 0) {
+		if(alpm_pkg_load(targ, 1, check_sig, &pkg) != 0) {
 			pm_fprintf(stderr, PM_LOG_ERROR, "'%s': %s\n",
 					targ, alpm_strerrorlast());
 			trans_release();
author	Dan McGee <dan@archlinux.org>	2011-04-21 23:39:01 -0500
committer	Dan McGee <dan@archlinux.org>	2011-04-24 10:48:34 -0500
commit	4d63ebe2fbe932412a7b8340af49bf30c8e17a91 (patch)
tree	83555011c2e8205a4243ac389647af50e964761e /src/pacman/upgrade.c
parent	1cf79eb8c8c7894d238cd906613dc1cd5b7ced1a (diff)