Revision a0970d07

« Previous | Next »

ID	a0970d07204e0ab97df63f782e1ff49cc94659fe
Parent	649bfa10
Child	cce393de

Added by Hans-Christoph Steiner over 3 years ago

when adding a repo with fingerprint, make sure to store the pubkey

The logic here is crufty, so I slapped a flag in there to make sure that
the pubkey gets stored when someone configures a repo and includes the
fingerprint. When the fingerprint is set, it will first download the
index.jar and verify it against that fingerprint. The logic for storing
the pubkey permanently happens later in the XML parsing, so there needs to
be a flag to signal to store the pubkey in this case.

Before the flow was always index.xml -> get pubkey -> index.jar. Really,
there should no longer be support for unsigned repos, then all of this
stuff can be dramatically simplified.

fixes #2924 https://dev.guardianproject.info/issues/2924
refs #2960 https://dev.guardianproject.info/issues/2960

Files

added
modified
copied
renamed
deleted

View differences

src
- org
  - fdroid
    - fdroid
      - updater
        RepoUpdater.java (diff)
        SignedRepoUpdater.java (diff)

Core Apps » Bazaar

Revision a0970d07

Related issues

Files