+ wget ${WGET_OPTS} ${GNU_KEYRING}
+ # TODO: need to avoid polluting the users keyring, but how?!
+ gpg --import ${GNU_KEYRING_GPG}
+
+ # TODO: guess it's better to have a function that "downloads, checks file-presence and signature, and returns true/false" whether the file is ok
+ # Function will check if file exists (otherwise try to download the file - if failed and file still doesn't exist, complain and exit the script)
+ # Check if signature file exists (otherwise download the signature file as well - if download fail, warn the user and return function)
+ # Check the signature. If failed, backup-by-renaming current files, redownload both file & signature, run the function body one more time - if still no success, warn and return from function
+
+ # NOTE: If new downloads are added here, please see the IMPORTANT note below