proc verifyPgpSignature { fileName } {
    variable pgpCommand

    if {[isEagle]} then {
      set fileName [appendArgs \" $fileName \"]

      return [expr {[catch {
        eval exec -success Success [subst $pgpCommand]
      }] == 0}]
    } else {
      return [expr {[catch {
        eval exec [subst $pgpCommand] 2>@1
      }] == 0}]
    }
  }


    #
    # NOTE: If the package script certificate is mising, fail.
    #
    if {![info exists metadata(certificate)]} then {
      error "missing script certificate"
    }

    #
    # NOTE: Create common cleanup script block that deletes any temporary
    #       files created for the script verification process.
    #
    set script(cleanup) {
      if {[string length $fileName(2)] > 0 && \
          [file exists $fileName(2)]} then {
        catch {file delete $fileName(2)}
        unset -nocomplain fileName(2)
      }

      if {[string length $fileName(1)] > 0 && \
          [file exists $fileName(1)]} then {
        catch {file delete $fileName(1)}
        unset -nocomplain fileName(1)
      }
    }

    #
    # NOTE: Figure out the "type" of script certificate we are now dealing
    #       with.
    #
    if {[isHarpyCertificate $metadata(certificate)]} then {
      #
      # NOTE: Attempt to create a completely unique array variable name to
      #       hold the package metadata in this scripting language as well
      #       as possibly in the other necessary scripting language(s).
      #
      set newVarName(1) [appendArgs \
          [getLookupVarNamePrefix] metadata_ [getLookupVarNameSuffix]]

      set newVarName(2) [appendArgs \
          [getLookupVarNamePrefix] cleanup_ [getLookupVarNameSuffix]]

      set newProcName(1) [appendArgs \
          [getLookupVarNamePrefix] eagleHasSecurity_ [getLookupVarNameSuffix]]

      set newProcName(2) [appendArgs \
          [getLookupVarNamePrefix] getFileTempName_ [getLookupVarNameSuffix]]

      set newProcName(3) [appendArgs \
          [getLookupVarNamePrefix] tclMustBeReady_ [getLookupVarNameSuffix]]

      #
      # NOTE: Create the Eagle script block that will be used to securely
      #       evaluate a signed package script.  This must be evaluated in
      #       Eagle because it uses several plugins only available there.
      #
      set script(outer) [string map [list \
          %metadata% $newVarName(1) %cleanup% $newVarName(2) \
          %eagleHasSecurity% $newProcName(1) %getFileTempName% \
          $newProcName(2) %tclMustBeReady% $newProcName(3)] {
        try {
          #
          # NOTE: If there is no package ifneeded script, there is nothing we
          #       can do here.
          #
          if {[string length ${%metadata%(ifNeeded)}] > 0} then {
            #

                  }
                  default {
                    error "unsupported language"
                  }
                }
              } finally {
                #
                # NOTE: Perform any necessary cleanup steps.

                #





                eval ${%cleanup%}





              }
            } finally {
              #
              # NOTE: Restore the saved security state for the interpreter.
              #
              if {!$savedSecurity} then {source disableSecurity}
              unset -nocomplain savedSecurity
            }
          }
        } finally {

          rename {%tclMustBeReady%} ""
          rename {%getFileTempName%} ""
          rename {%eagleHasSecurity%} ""

          unset -nocomplain {%cleanup%}
          unset -nocomplain {%metadata%}
        }
      }]

      #
      # NOTE: Copy the package metadata into the fresh array variable,
      #       if necessary, marshalling it from native Tcl to Eagle.
      #
      if {[isEagle]} then {
        array set $newVarName(1) [array get metadata]
        set $newVarName(2) $script(cleanup)

        proc $newProcName(1) {} [info body [appendArgs \
            [namespace current] ::eagleHasSecurity]]

        proc $newProcName(2) {} [info body [appendArgs \
            [namespace current] ::getFileTempName]]

        proc $newProcName(3) {} [info body [appendArgs \
            [namespace current] ::tclMustBeReady]]

        return [eval $script(outer)]
      } else {
        eagleMustBeReady

        eagle [list array set $newVarName(1) [array get metadata]]
        eagle [list set $newVarName(2) $script(cleanup)]

        eagle [list proc $newProcName(1) {} [info body [appendArgs \
            [namespace current] ::eagleHasSecurity]]]

        eagle [list proc $newProcName(2) {} [info body [appendArgs \
            [namespace current] ::getFileTempName]]]

        eagle [list proc $newProcName(3) {} [info body [appendArgs \
            [namespace current] ::tclMustBeReady]]]

        return [eagle $script(outer)]
      }
    } elseif {[isPgpSignature $metadata(certificate)]} then {
      #
      # NOTE: If there is no package ifneeded script, there is nothing we
      #       can do here.

        #
        if {[string length $metadata(certificate)] > 0} then {
          writeFile $fileName(2) $metadata(certificate)
        }

        #
        # NOTE: Attempt to verify the PGP signature for the package script.

        #
        if {[verifyPgpSignature $fileName(2)]} then {
          #
          # NOTE: Delete the temporary files that we created for the PGP
          #       signature verification.

          #
          eval $script(cleanup)
        } else {
          #
          # NOTE: Delete the temporary files that we created for the PGP
          #       signature verification.
          #

          eval $script(cleanup)



          #

          # NOTE: PGP signature verification failed.  Raise an error and
          #       do not proceed with evaluating the package script.
          #
          error [appendArgs \
              "couldn't read file \"" $fileName(1) "\": bad PGP signature"]

        }

        #
        # NOTE: The PGP signature was verified; use the downloaded package
        #       script verbatim.
        #
        set script(inner) $metadata(ifNeeded)

        #

    THE ASSOCIATED SOFTWARE MAY NOT WORK PROPERLY IF THIS FILE IS ALTERED.
-->
<Certificate xmlns="https://eagle.to/2011/harpy"
             xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
             xmlns:xsd="http://www.w3.org/2001/XMLSchema">
  <Protocol>None</Protocol>
  <Vendor>Mistachkin Systems</Vendor>
  <Id>6b9ca4d2-f735-4a9c-9e98-6eb4e20071e5</Id>
  <HashAlgorithm>SHA512</HashAlgorithm>
  <EntityType>Script</EntityType>
  <TimeStamp>2016-08-16T23:38:50.4841328Z</TimeStamp>
  <Duration>-1.00:00:00</Duration>
  <Key>0x2c322765603b5278</Key>
  <Signature>
    EXlOLQrhSslSjS2f79QWCtvY5eRmAaLsMz0bissOYcPh9ce6sNgVPaWDr/oyUiQ5kwzmOE3ehBfV
    xMkkTDRsjBVt/oslemlHGsidiAtXtIoQB4g/d71Vmaimwz05VynhrO6tG6rwJ8UO1lbxtYrvL1vS
    rdVfkCQ/yHaayHYJKWrHSLshA+BfsibqpABk0Jc3JOJNohICCCM1h2p+cFnqYO4l0yE1oTxeF8Pe
    RdLbPmuTawiysRvXejwxFWKX+nzXwjx+PxKCDupYhzhQHuMJJviXC23Ocrkya6b0PFeUNovpdyE2
    t1KGcz69T3b52BoEq7El5KUO5zhfQE1878i5CGyf27w1JFc7V1Yo/JNFvrzb38vFUDuX0Y5PecIC
    lcCJ+BqHpuK9PrexKFF9wxrXDP7tuigDrHCEqNIQJFBtB/hS8QoQwC+XrHlD37z7pduV/RX8VpzE
    88m7Bn0j4OtyKaZcZgfLbjsZcuMOxM7ATdwSNwrwy0W8bRl0VIdQcIXUZ/QbKtyN1jsym/p06gln
    dz3TA+PSWoZImYddFQQnTK2wBKJIGr1TNjmBkq9Md1x2IXQNu1CkLYfSof50nHWmWKe70kGURCco
    EGLa8segaC97ssJAIakKcdQGMPO39r7U43q0gFjn/YEXdX5J6/Y+8Q+ZlBkQ01ntc0FO7nIDFWh0
    CM0qcTItbYv+6OEG/aj6/W97jzIhFZLB+4mq2UX9J0SYG4QsdBCcm8l2gEf89TG+AiNNNJUifJjV
    SUQK8RsF5awarJmTl3XIw1KYVPEfiD70inTlDqVt7RTYT4sxZN1Tazd/GxSnqYW683KnawKCAU8W
    1F6+fG+wsT2TO7MCoSorQ2tNL5CZU5S1ufwLi2BE9sIBysNYp+Hlpu1xIp5cSC7NKYp6zV/RceMj
    It42WsMhp2xX3FIcyNEJ9YRoiS7ehz1CLidB5sitt3K3wuA4dlSY23l9i+MIhMesqNF8TA+zOqmp
    mOJOb309IVY158/wJCwucW7b79JRYsNHn45HnHusrgfhSWJzCDLkEbnbElDmNlni6DK+hmzhOgyF
    /R9+4ndWHot5A7fRYWix+80Ek3bZ+NoNnuwcfe5QEzROgJ1FydO4fIlC00Nj90OqBXmYRdHdchfk
    M4P/ZR3h5ozbWjQb6UvBQFMiV+B5H8kF6nzuVsY9nd+0k86vX2YsVbAZUm+c+yhfH9kPtQrnIwEl
    ++r+QDA9GRZVIF3yHGsOEH7K8PlwzBkgapsOpUrjA5rXTRem1tliN98FBZpPueMS5CQXJ+598adQ
    4A4g0VjqtHZFJiYRQ24pfw2hWs4Wk7mwQjBirfbyymBToobU4KHf9WaKs6dsEWN0nGmpkp9vHg==
  </Signature>
</Certificate>