gnupg/agent at efffd9907b7501323bae89ae515bc26312aaab15 - gnupg - Nils’ gitea instance

security-and-privacy/gnupg

mirror of git://git.gnupg.org/gnupg.git synced 2024-12-22 10:19:57 +01:00

History

Daniel Kahn Gillmor efffd9907b agent: Do not place a trailing NUL byte on S-expressions

* agent/pkdecrypt.c (agent_pkdecrypt): Avoid appending a trailing NUL
byte at the end of the generated S-expression.

--

In many cases, a canonical S-expression may have an embedded NUL
anyway (especially if it contains raw cryptographic key material or
other high-entropy bytestrings), so trying to treat a canonical
S-expression as a C string is likely to be dangerous -- better to not
leave any such expectations.

With the previous commit addressing the otherwise brittle consumers of
pkdecrypt, this should now be safe to do.

GnuPG-bug-id: 4652
Signed-off-by: Daniel Kahn Gillmor <dkg@fifthhorseman.net>

2019-07-24 19:56:23 -04:00

..

agent.h

agent: Add pinentry_loopback_confirm declaration.

2019-06-04 09:59:08 +09:00

all-tests.scm

tests: Make it possible to run all tests using our infrastructure.

2017-05-11 18:12:37 +02:00

cache.c

agent: Replace most assert by log_assert.

2019-05-14 10:31:46 +02:00

call-pinentry.c

agent: Relax the handling of pinentry error for keyboard grab.

2019-07-11 14:55:28 +09:00

call-scd.c

agent: Stop scdaemon after reload when disable_scdaemon.

2019-05-23 10:15:18 +09:00

ChangeLog-2011

Fix typos

2015-10-28 10:20:17 +01:00

command-ssh.c

agent: For SSH key, don't put NUL-byte at the end.

2019-05-21 15:50:28 +09:00

command.c

g10,agent: Support CONFIRM for --delete-key.

2019-06-04 09:17:21 +09:00

cvt-openpgp.c

agent: Replace most assert by log_assert.

2019-05-14 10:31:46 +02:00

cvt-openpgp.h

Change all http://www.gnu.org in license notices to https://

2016-11-05 12:02:19 +01:00

divert-scd.c

agent,scd: Scan and load all public keys for availability.

2019-05-16 10:09:41 +09:00

findkey.c

agent: Replace most assert by log_assert.

2019-05-14 10:31:46 +02:00

genkey.c

agent: Remove unused agent_show_message.

2019-05-28 11:29:25 +09:00

gpg-agent-w32info.rc

w32: Add icons and version information.

2013-05-07 21:35:48 +02:00

gpg-agent.c

agent: Stop scdaemon after reload when disable_scdaemon.

2019-05-23 10:15:18 +09:00

keyformat.txt

agent: Allow the use of "Label:" in a key file.

2019-05-07 11:09:09 +02:00

learncard.c

agent: Replace most assert by log_assert.

2019-05-14 10:31:46 +02:00

Makefile.am

tests: Make it possible to run all tests using our infrastructure.

2017-05-11 18:12:37 +02:00

pkdecrypt.c

agent: Do not place a trailing NUL byte on S-expressions

2019-07-24 19:56:23 -04:00

pksign.c

agent: Make an MD encoding function more robust.

2019-05-28 12:27:52 +02:00

preset-passphrase.c

agent: Replace most assert by log_assert.

2019-05-14 10:31:46 +02:00

protect-tool.c

agent: Replace most assert by log_assert.

2019-05-14 10:31:46 +02:00

protect.c

agent: Replace most assert by log_assert.

2019-05-14 10:31:46 +02:00

t-protect.c

agent: Fix description of shadow format.

2017-12-08 09:19:50 +09:00

trans.c

agent: Replace most assert by log_assert.

2019-05-14 10:31:46 +02:00

trustlist.c

agent: Replace most assert by log_assert.

2019-05-14 10:31:46 +02:00

w32main.c

agent: Resolve conflict of util.h.

2017-03-07 19:22:48 +09:00

w32main.h

Change all http://www.gnu.org in license notices to https://

2016-11-05 12:02:19 +01:00