diff options
| author | Werner Koch <wk@gnupg.org> | 2017-09-28 14:10:12 +0200 |
|---|---|---|
| committer | Werner Koch <wk@gnupg.org> | 2017-09-28 14:10:12 +0200 |
| commit | b509d81cab030cca6abf0d878e1fc884eda344e6 (patch) | |
| tree | 520d240f68e6c0c7cd4f1a5771314ef0492a8d56 /g10/trust.c | |
| parent | doc: Make --check-sigs more prominent. (diff) | |
| download | gnupg2-b509d81cab030cca6abf0d878e1fc884eda344e6.tar.xz gnupg2-b509d81cab030cca6abf0d878e1fc884eda344e6.zip | |
gpg: Workaround for junk after --trusted-key.
* g10/trust.c (register_trusted_key): Cut off everthing starting as a
hash sign.
--
This problem is fallout from
commit f99830b72812395da5451152bdd2f2d90a7cb7fb
which fixes
GnuPG-bug-id: 1206
The same could happen with other options taking keyids but we won't
change that because a trailing '#' does not indicate a comment. So
this is really only a workaround and eventually we will
deprecate --trusted-key anyway or require a fingerprint as a value.
Signed-off-by: Werner Koch <wk@gnupg.org>
Diffstat (limited to 'g10/trust.c')
| -rw-r--r-- | g10/trust.c | 20 |
1 files changed, 20 insertions, 0 deletions
diff --git a/g10/trust.c b/g10/trust.c index ee6078b5a..6d4f0e74b 100644 --- a/g10/trust.c +++ b/g10/trust.c @@ -66,6 +66,26 @@ register_trusted_key (const char *string) #ifdef NO_TRUST_MODELS (void)string; #else + + /* Some users have conf files with entries like + * trusted-key 0x1234567812345678 # foo + * That is obviously wrong. Before fixing bug#1206 trailing garbage + * on a key specification if was ignored. We detect the above use case + * here and cut off the junk-looking-like-a comment. */ + if (strchr (string, '#')) + { + char *buf; + + buf = xtrystrdup (string); + if (buf) + { + *strchr (buf, '#') = 0; + tdb_register_trusted_key (buf); + xfree (buf); + return; + } + } + tdb_register_trusted_key (string); #endif } |