Don't remove the module if the signature is invalid

Remove it only just before extraction
2012-01-30 15:48:28 +01:00 · 2012-01-30 15:48:28 +01:00 · 8c50324dbf
commit 8c50324dbf
parent 09e3c516d0
1 changed files with 3 additions and 2 deletions
--- a/weboob/core/repositories.py
+++ b/weboob/core/repositories.py
@ -584,8 +584,7 @@ class Repositories(object):
        tardata = fp.read()


-        if os.path.isdir(module_dir):
-            shutil.rmtree(module_dir)
+        # Check signature
        if module.signed and Keyring.find_gpgv():
            progress.progress(0.5, 'Checking module authenticity...')
            fpsig = browser.openurl(posixpath.join(module.url + '.sig'))
@ -598,6 +597,8 @@ class Repositories(object):


        # Extract module from tarball.
+        if os.path.isdir(module_dir):
+            shutil.rmtree(module_dir)
        progress.progress(0.7, 'Setting up module...')
        with closing(tarfile.open('', 'r:gz', StringIO(tardata))) as tar:
            tar.extractall(self.modules_dir)