security-and-privacy/gnupg
security-and-privacy/gnupg
1
0
Fork 0
mirror of git://git.gnupg.org/gnupg.git synced 2025-07-03 22:56:33 +02:00
Code Activity

gpg: Fix regression for the recent malicious subkey DoS fix.

Browse source 
* g10/packet.h (PUBKEY_USAGE_VERIFY): New.
* g10/getkey.c (get_pubkey_for_sig): Pass new flag also to requested
usage.
(finish_lookup): Introduce a verify_mode.
--

Fixes-commit: 48978ccb4e
GnuPG-bug-id: 7547
This commit is contained in:
Werner Koch 2025-03-06 17:17:17 +01:00
parent 25d48663f9
commit d3d7713c17
No known key found for this signature in database
GPG key ID: E3FDFF218E45B72B
2 changed files with 34 additions and 19 deletions
Download patch file Download diff file Expand all files Collapse all files

1
g10/packet.h
View file

@ -60,6 +60,7 @@
#define PUBKEY_USAGE_RENC 1024 /* Restricted encryption. */
#define PUBKEY_USAGE_TIME 2048 /* Timestamp use. */
#define PUBKEY_USAGE_VERIFY 16384 /* Verify only modifier. */
/* The usage bits which can be derived from the algo. */
#define PUBKEY_USAGE_BASIC_MASK (PUBKEY_USAGE_SIG|PUBKEY_USAGE_ENC\