1
0
mirror of git://git.gnupg.org/gnupg.git synced 2025-01-20 14:37:08 +01:00

gpg: Fallback to import with self-sigs-only on too large keyblocks.

* g10/import.c (import_one): Rename to ...
(import_one_real): this.  Do not print and update stats on keyring
write errors.
(import_one): New.  Add fallback code.
--

GnuPG-bug-id: 4591
Signed-off-by: Werner Koch <wk@gnupg.org>
This commit is contained in:
Werner Koch 2019-07-01 21:53:55 +02:00
parent 2e349bb617
commit 3a403ab04e
No known key found for this signature in database
GPG Key ID: E3FDFF218E45B72B

View File

@ -129,6 +129,7 @@ static int delete_inv_parts (ctrl_t ctrl, kbnode_t keyblock,
u32 *keyid, unsigned int options); u32 *keyid, unsigned int options);
static int any_uid_left (kbnode_t keyblock); static int any_uid_left (kbnode_t keyblock);
static int remove_all_uids (kbnode_t *keyblock); static int remove_all_uids (kbnode_t *keyblock);
static void remove_all_non_self_sigs (kbnode_t *keyblock, u32 *keyid);
static int merge_blocks (ctrl_t ctrl, unsigned int options, static int merge_blocks (ctrl_t ctrl, unsigned int options,
kbnode_t keyblock_orig, kbnode_t keyblock_orig,
kbnode_t keyblock, u32 *keyid, kbnode_t keyblock, u32 *keyid,
@ -1783,7 +1784,7 @@ update_key_origin (kbnode_t keyblock, u32 curtime, int origin, const char *url)
* has valid parts. * has valid parts.
*/ */
static gpg_error_t static gpg_error_t
import_one (ctrl_t ctrl, import_one_real (ctrl_t ctrl,
kbnode_t keyblock, struct import_stats_s *stats, kbnode_t keyblock, struct import_stats_s *stats,
unsigned char **fpr, size_t *fpr_len, unsigned int options, unsigned char **fpr, size_t *fpr_len, unsigned int options,
int from_sk, int silent, int from_sk, int silent,
@ -1871,6 +1872,13 @@ import_one (ctrl_t ctrl,
return 0; return 0;
} }
/* Remove all non-self-sigs if requested. Noe that this is a NOP if
* that option has been globally set but we may also be called
* latter with the already parsed keyblock and a locally changed
* option. This is why we need to remove them here as well. */
if ((options & IMPORT_SELF_SIGS_ONLY))
remove_all_non_self_sigs (&keyblock, keyid);
/* Remove or collapse the user ids. */ /* Remove or collapse the user ids. */
if ((options & IMPORT_DROP_UIDS)) if ((options & IMPORT_DROP_UIDS))
remove_all_uids (&keyblock); remove_all_uids (&keyblock);
@ -2080,23 +2088,26 @@ import_one (ctrl_t ctrl,
hd = NULL; hd = NULL;
/* We are ready. */ /* We are ready. */
if (!opt.quiet && !silent) if (!err && !opt.quiet && !silent)
{ {
char *p = get_user_id_byfpr_native (ctrl, fpr2, fpr2len); char *p = get_user_id_byfpr_native (ctrl, fpr2, fpr2len);
log_info (_("key %s: public key \"%s\" imported\n"), log_info (_("key %s: public key \"%s\" imported\n"),
keystr(keyid), p); keystr(keyid), p);
xfree(p); xfree(p);
} }
if (is_status_enabled()) if (!err && is_status_enabled())
{ {
char *us = get_long_user_id_string (ctrl, keyid); char *us = get_long_user_id_string (ctrl, keyid);
write_status_text( STATUS_IMPORTED, us ); write_status_text( STATUS_IMPORTED, us );
xfree(us); xfree(us);
print_import_ok (pk, 1); print_import_ok (pk, 1);
} }
if (!err)
{
stats->imported++; stats->imported++;
new_key = 1; new_key = 1;
} }
}
else /* Key already exists - merge. */ else /* Key already exists - merge. */
{ {
int n_uids, n_sigs, n_subk, n_sigs_cleaned, n_uids_cleaned; int n_uids, n_sigs, n_subk, n_sigs_cleaned, n_uids_cleaned;
@ -2165,8 +2176,10 @@ import_one (ctrl_t ctrl,
keydb_release (hd); keydb_release (hd);
hd = NULL; hd = NULL;
/* We are ready. */ /* We are ready. Print and update stats if we got no error.
if (!opt.quiet && !silent) * An error here comes from writing the keyblock and thus
* very likely means that no update happened. */
if (!err && !opt.quiet && !silent)
{ {
char *p = get_user_id_byfpr_native (ctrl, fpr2, fpr2len); char *p = get_user_id_byfpr_native (ctrl, fpr2, fpr2len);
if (n_uids == 1 ) if (n_uids == 1 )
@ -2202,6 +2215,8 @@ import_one (ctrl_t ctrl,
xfree(p); xfree(p);
} }
if (!err)
{
stats->n_uids +=n_uids; stats->n_uids +=n_uids;
stats->n_sigs +=n_sigs; stats->n_sigs +=n_sigs;
stats->n_subk +=n_subk; stats->n_subk +=n_subk;
@ -2211,6 +2226,7 @@ import_one (ctrl_t ctrl,
if (is_status_enabled () && !silent) if (is_status_enabled () && !silent)
print_import_ok (pk, ((n_uids?2:0)|(n_sigs?4:0)|(n_subk?8:0))); print_import_ok (pk, ((n_uids?2:0)|(n_sigs?4:0)|(n_subk?8:0)));
} }
}
else else
{ {
/* Release the handle and thus unlock the keyring asap. */ /* Release the handle and thus unlock the keyring asap. */
@ -2296,6 +2312,39 @@ import_one (ctrl_t ctrl,
} }
/* Wrapper around import_one_real to retry the import in some cases. */
static gpg_error_t
import_one (ctrl_t ctrl,
kbnode_t keyblock, struct import_stats_s *stats,
unsigned char **fpr, size_t *fpr_len, unsigned int options,
int from_sk, int silent,
import_screener_t screener, void *screener_arg,
int origin, const char *url, int *r_valid)
{
gpg_error_t err;
err = import_one_real (ctrl, keyblock, stats, fpr, fpr_len, options,
from_sk, silent, screener, screener_arg,
origin, url, r_valid);
if (gpg_err_code (err) == GPG_ERR_TOO_LARGE
&& gpg_err_source (err) == GPG_ERR_SOURCE_KEYBOX)
{
/* We hit the maximum image length. Ask the wrapper to do
* everything again but this time with some extra options. */
u32 keyid[2];
keyid_from_pk (keyblock->pkt->pkt.public_key, keyid);
log_info ("key %s: keyblock too large, retrying with self-sigs-only\n",
keystr (keyid));
options |= IMPORT_SELF_SIGS_ONLY | IMPORT_CLEAN;
err = import_one_real (ctrl, keyblock, stats, fpr, fpr_len, options,
from_sk, silent, screener, screener_arg,
origin, url, r_valid);
}
return err;
}
/* Transfer all the secret keys in SEC_KEYBLOCK to the gpg-agent. The /* Transfer all the secret keys in SEC_KEYBLOCK to the gpg-agent. The
* function prints diagnostics and returns an error code. If BATCH is * function prints diagnostics and returns an error code. If BATCH is
* true the secret keys are stored by gpg-agent in the transfer format * true the secret keys are stored by gpg-agent in the transfer format
@ -2974,7 +3023,7 @@ import_secret_one (ctrl_t ctrl, kbnode_t keyblock,
/* The secret keyblock may not have nodes which are deleted in /* The secret keyblock may not have nodes which are deleted in
* the public keyblock. Otherwise we would import just the * the public keyblock. Otherwise we would import just the
* secret key without having the public key. That would be * secret key without having the public key. That would be
* surprising and clutters out private-keys-v1.d. */ * surprising and clutters our private-keys-v1.d. */
err = resync_sec_with_pub_keyblock (&keyblock, pub_keyblock, &attic); err = resync_sec_with_pub_keyblock (&keyblock, pub_keyblock, &attic);
if (err) if (err)
goto leave; goto leave;
@ -3823,6 +3872,38 @@ remove_all_uids (kbnode_t *keyblock)
} }
/* Delete all non-self-sigs from KEYBLOCK.
* Returns: True if the keyblock has changed. */
static void
remove_all_non_self_sigs (kbnode_t *keyblock, u32 *keyid)
{
kbnode_t node;
unsigned int dropped = 0;
for (node = *keyblock; node; node = node->next)
{
if (is_deleted_kbnode (node))
continue;
if (node->pkt->pkttype != PKT_SIGNATURE)
continue;
if (node->pkt->pkt.signature->keyid[0] == keyid[0]
&& node->pkt->pkt.signature->keyid[1] == keyid[1])
continue;
delete_kbnode (node);
dropped++;
}
if (dropped)
commit_kbnode (keyblock);
if (dropped && opt.verbose)
log_info ("key %s: number of dropped non-self-signatures: %u\n",
keystr (keyid), dropped);
}
/* /*
* It may happen that the imported keyblock has duplicated user IDs. * It may happen that the imported keyblock has duplicated user IDs.
* We check this here and collapse those user IDs together with their * We check this here and collapse those user IDs together with their