Igor Peshansky wrote: > Do you mean packagemeta::ScanDownloadedFiles() calling > packageversion::scan(), which calls check_for_cached()? Then yes, this > isn't properly wrapped in a try/catch. I'd like to verify that this is > the culprit (when someone sends me the corrupt tarball), but I think I see > a proper fix for this. Will submit a patch shortly.
Yes. It's easy to reproduce, just molest a package in your local download cache so that it fails md5. Brian
