From e3589110e01dc6ad04463351ec2ce17201556d09 Mon Sep 17 00:00:00 2001
From: Werner Koch <wk@gnupg.org>
Date: Mon, 6 Mar 2017 13:21:50 +0100
Subject: [PATCH] wks: Set published keys world-readable.

* tools/gpg-wks-server.c (check_and_publish): Set the permissions.

Signed-off-by: Werner Koch <wk@gnupg.org>
---
 tools/gpg-wks-server.c | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/tools/gpg-wks-server.c b/tools/gpg-wks-server.c
index 0376cce8f..fc021c552 100644
--- a/tools/gpg-wks-server.c
+++ b/tools/gpg-wks-server.c
@@ -1374,6 +1374,11 @@ check_and_publish (server_ctx_t ctx, const char *address, const char *nonce)
       goto leave;
     }
 
+  /* Make sure it is world readable.  */
+  if (gnupg_chmod (fnewname, "-rwxr--r--"))
+    log_error ("can't set permissions of '%s': %s\n",
+               fnewname, gpg_strerror (gpg_err_code_from_syserror()));
+
   log_info ("key %s published for '%s'\n", ctx->fpr, address);
   send_congratulation_message (address, fnewname);