* lisp/emacs-lisp/package.el (package--check-signature): (backport)

If package-check-signature is allow-unsigned, don't signal error when we can't verify signature because of missing public key. Fixes: debbugs:17625
author: Daiki Ueno 2014-06-26 09:47:37 -0400
committer: Stefan Monnier 2014-06-26 09:47:37 -0400
commit: 2493e35c369caabf6a65e376fd0399e95b588bfd (patch)
tree: c652898af7eed009320bbbdd02da8a24d987b364
parent: 7d1fd42bd6480aa9ea1286dba3c730c2391fcc2b (diff)
download: emacs-2493e35c369caabf6a65e376fd0399e95b588bfd.tar.gz
emacs-2493e35c369caabf6a65e376fd0399e95b588bfd.zip
2 files changed, 23 insertions, 12 deletions
diff --git a/lisp/ChangeLog b/lisp/ChangeLog
index 8cc59d88615..6c8f118c8a3 100644
--- a/lisp/ChangeLog
+++ b/lisp/ChangeLog
@@ -1,3 +1,10 @@
+2014-06-26  Daiki Ueno  <ueno@gnu.org>
+        * emacs-lisp/package.el (package--check-signature):
+        If package-check-signature is allow-unsigned, don't signal error when
+        we can't verify signature because of missing public key
+        (backport for bug#17625).
 2014-06-26  Stefan Monnier  <monnier@iro.umontreal.ca>
        * progmodes/hideif.el: Undo last change which should only go to trunk
@@ -17,8 +24,8 @@
        * ruler-mode.el (ruler-mode-mouse-add-tab-stop)
        (ruler-mode-ruler): Fix to work with nil tab-stop-list.
-        * progmodes/asm-mode.el (asm-calculate-indentation): Use
+        * progmodes/asm-mode.el (asm-calculate-indentation):
-        indent-next-tab-stop.
+        Use indent-next-tab-stop.
        * indent.el (indent-accumulate-tab-stops): New function.
diff --git a/lisp/emacs-lisp/package.el b/lisp/emacs-lisp/package.el
index 6efe6c7135a..b70b478cd32 100644
--- a/lisp/emacs-lisp/package.el
+++ b/lisp/emacs-lisp/package.el
@@ -815,16 +815,20 @@ GnuPG keyring is located under \"gnupg\" in `package-user-dir'."
                        (buffer-string))))
    (epg-context-set-home-directory context homedir)
    (epg-verify-string context sig-content (buffer-string))
-    ;; The .sig file may contain multiple signatures.  Success if one
+    (let (good-signatures had-fatal-error)
-    ;; of the signatures is good.
+      ;; The .sig file may contain multiple signatures.  Success if one
-    (let ((good-signatures
+      ;; of the signatures is good.
-           (delq nil (mapcar (lambda (sig)
+      (dolist (sig (epg-context-result-for context 'verify))
-                               (if (eq (epg-signature-status sig) 'good)
+        (if (eq (epg-signature-status sig) 'good)
-                                   sig))
+            (push sig good-signatures)
-                             (epg-context-result-for context 'verify)))))
+          ;; If package-check-signature is allow-unsigned, don't
-      (if (null good-signatures)
+          ;; signal error when we can't verify signature because of
-          ;; FIXME: Only signal an error if the signature is invalid, not if we
+          ;; missing public key.  Other errors are still treated as
-          ;; simply lack the key needed to check the sig!
+          ;; fatal (bug#17625).
+          (unless (and (eq package-check-signature 'allow-unsigned)
+                       (eq (epg-signature-status sig) 'no-pubkey))
+            (setq had-fatal-error t))))
+      (if (and (null good-signatures) had-fatal-error)
          (error "Failed to verify signature %s: %S"
                 sig-file
                 (mapcar #'epg-signature-to-string
author	Daiki Ueno	2014-06-26 09:47:37 -0400
committer	Stefan Monnier	2014-06-26 09:47:37 -0400
commit	2493e35c369caabf6a65e376fd0399e95b588bfd (patch)
tree	c652898af7eed009320bbbdd02da8a24d987b364
parent	7d1fd42bd6480aa9ea1286dba3c730c2391fcc2b (diff)
download	emacs-2493e35c369caabf6a65e376fd0399e95b588bfd.tar.gz emacs-2493e35c369caabf6a65e376fd0399e95b588bfd.zip