Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 21353 Details for
Bug 34504
GnuPG ElGamal keys might get compromised
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
Patch against GnuPG 1.2.3
gnupg_patch.diff (text/plain), 2.33 KB, created by
fbusse
on 2003-11-27 02:08:12 UTC
(
hide
)
Description:
Patch against GnuPG 1.2.3
Filename:
MIME Type:
Creator:
fbusse
Created:
2003-11-27 02:08:12 UTC
Size:
2.33 KB
patch
obsolete
>Index: getkey.c >=================================================================== >RCS file: /cvs/gnupg/gnupg/g10/getkey.c,v >retrieving revision 1.78.2.20 >diff -u -r1.78.2.20 getkey.c >--- getkey.c 21 Jul 2003 14:55:00 -0000 1.78.2.20 >+++ getkey.c 27 Nov 2003 00:32:30 -0000 >@@ -1655,6 +1655,11 @@ > if ( x ) /* mask it down to the actual allowed usage */ > key_usage &= x; > } >+ >+ /* Type 20 Elgamal keys are not usable. */ >+ if(pk->pubkey_algo==PUBKEY_ALGO_ELGAMAL) >+ key_usage=0; >+ > pk->pubkey_usage = key_usage; > > if ( !key_expire_seen ) { >@@ -1869,6 +1874,13 @@ > if ( x ) /* mask it down to the actual allowed usage */ > key_usage &= x; > } >+ >+ /* Type 20 Elgamal subkeys or any subkey on a type 20 primary are >+ not usable. */ >+ if(mainpk->pubkey_algo==PUBKEY_ALGO_ELGAMAL >+ || subpk->pubkey_algo==PUBKEY_ALGO_ELGAMAL) >+ key_usage=0; >+ > subpk->pubkey_usage = key_usage; > > p = parse_sig_subpkt (sig->hashed, SIGSUBPKT_KEY_EXPIRE, NULL); >Index: keygen.c >=================================================================== >RCS file: /cvs/gnupg/gnupg/g10/keygen.c,v >retrieving revision 1.90.2.11 >diff -u -r1.90.2.11 keygen.c >--- keygen.c 16 Jul 2003 03:09:15 -0000 1.90.2.11 >+++ keygen.c 27 Nov 2003 00:32:31 -0000 >@@ -958,8 +958,6 @@ > tty_printf( _(" (%d) DSA (sign only)\n"), 2 ); > if( addmode ) > tty_printf( _(" (%d) ElGamal (encrypt only)\n"), 3 ); >- if (opt.expert) >- tty_printf( _(" (%d) ElGamal (sign and encrypt)\n"), 4 ); > tty_printf( _(" (%d) RSA (sign only)\n"), 5 ); > if (addmode) > tty_printf( _(" (%d) RSA (encrypt only)\n"), 6 ); >@@ -989,21 +987,6 @@ > algo = PUBKEY_ALGO_RSA; > *r_usage = PUBKEY_USAGE_SIG; > break; >- } >- else if( algo == 4 && opt.expert) >- { >- tty_printf(_( >-"The use of this algorithm is only supported by GnuPG. You will not be\n" >-"able to use this key to communicate with PGP users. This algorithm is also\n" >-"very slow, and may not be as secure as the other choices.\n")); >- >- if( cpr_get_answer_is_yes("keygen.algo.elg_se", >- _("Create anyway? "))) >- { >- algo = PUBKEY_ALGO_ELGAMAL; >- *r_usage = PUBKEY_USAGE_ENC | PUBKEY_USAGE_SIG; >- break; >- } > } > else if( algo == 3 && addmode ) { > algo = PUBKEY_ALGO_ELGAMAL_E; >
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=21353">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 34504
: 21353
