Igor Peshansky wrote:

> Do you mean packagemeta::ScanDownloadedFiles() calling
> packageversion::scan(), which calls check_for_cached()?  Then yes, this
> isn't properly wrapped in a try/catch.  I'd like to verify that this is
> the culprit (when someone sends me the corrupt tarball), but I think I see
> a proper fix for this.  Will submit a patch shortly.

Yes.  It's easy to reproduce, just molest a package in your local
download cache so that it fails md5.

Brian

Reply via email to