gpg: Print better debug info in case of broken sig subpackets.

* g10/parse-packet.c (enum_sig_subpkt): Print a hexdump. -- A test key for this is 02DF08F5FD356BF27F5F7B838921B5DCCD15A883 . A key listing in verbose mode will now yield gpg: DBG: buffer shorter than subpacket (10/9/25);\ dump: 19100d87e54973647cff The error here is that the packet length is 0x19 but what follows is a long keyid (subpacket 16) which is shorter. The debug output might be helpful to better analyze broken signatures. Signed-off-by: Werner Koch <wk@gnupg.org>
2020-01-15 11:51:52 +01:00 · 2020-01-15 11:51:52 +01:00 · 3ccad75d76
parent 8edd4b8b8c
commit 3ccad75d76
1 changed files with 4 additions and 1 deletions
--- a/g10/parse-packet.c
+++ b/g10/parse-packet.c
@ -1886,7 +1886,10 @@ enum_sig_subpkt (PKT_signature *sig, int want_hashed, sigsubpkttype_t reqtype,

 too_short:
  if (opt.verbose && !glo_ctrl.silence_parse_warnings)
-    log_info ("buffer shorter than subpacket\n");
+    log_printhex (pktbuf->data, pktbuf->len > 16? 16 : pktbuf->len,
+                  "buffer shorter than subpacket (%zu/%d/%zu); dump:",
+                  pktbuf->len, buflen, n);
+
  if (start)
    *start = -1;
  return NULL;