Home GnuPG
Diffusion GnuPG b6507bb80e4e

kbx: Fix handling of overlong keys.
b6507bb80e4eUnpublished
Actions

Unpublished Commit · Learn More

Not On Permanent Ref: This commit is not an ancestor of any permanent ref.

Description

kbx: Fix handling of overlong keys.

* kbx/keybox-file.c (IMAGELEN_LIMIT): Change limit from 10^6 to 2MiB.
(_keybox_read_blob2): Skip too long record records.
(_keybox_write_blob): Do not accept too long record.
* kbx/keybox-dump.c (file_stats_s): Add field skipped_long_blobs.
(_keybox_dump_file): Print new counter.
(_keybox_dump_file): Skip too long records.
----

To test this feature you may set the limit back to 1MiB and use key
F7F0E70F307D56ED which is in my local copy close to 2MiB. Without
this patch it was possible to import the key but access to that key
and all keys stored after it was not possible.

  • Signed-off-by: Werner Koch <wk@gnupg.org>

Details

Provenance
wernerAuthored on Oct 9 2014, 8:19 PM
Parents
rGec332d58efc5: gpg: Take care to use pubring.kbx if it has ever been used.
Branches
Unknown
Tags
Unknown

Event Timeline

Werner Koch <wk@gnupg.org> committed rGb6507bb80e4e: kbx: Fix handling of overlong keys. (authored by Werner Koch <wk@gnupg.org>).Oct 9 2014, 8:19 PM

Changes (2)

PathSize
kbx/

rGb6507bb80e4e

View Options

kbx/keybox-dump.c

Loading...
View Options

kbx/keybox-file.c

Loading...