git.saurik.com Git - apt.git/commit

author	David Kalnischkies <david@kalnischkies.de>
	Fri, 16 Dec 2016 18:50:48 +0000 (19:50 +0100)
committer	David Kalnischkies <david@kalnischkies.de>
	Sat, 31 Dec 2016 01:29:19 +0000 (02:29 +0100)
commit	6376dfb8dfb99b9d182c2fb13aa34b2ac89805e3
tree	d22e9bdf482821c1e1496f27e3ff28735eff07e7	tree \| snapshot
parent	4ce2f35248123ff2366c8c365ad6a94945578d66	commit \| diff

warn if clearsigned file has ignored content parts

Clearsigned files like InRelease, .dsc, .changes and co can potentially
include unsigned or additional messages blocks ignored by gpg in
verification, but a potential source of trouble in our own parsing
attempts – and an unneeded risk as the usecases for the clearsigned
files we deal with do not reasonably include unsigned parts (like emails
or some such).

This commit changes the silent ignoring to warnings for now to get an
impression on how widespread unintended unsigned parts are, but
eventually we want to turn these into hard errors.

apt-pkg/contrib/gpgv.cc		diff \| blob \| blame \| history
test/integration/test-cve-2013-1051-InRelease-parsing		diff \| blob \| blame \| history
test/libapt/getlanguages_test.cc		diff \| blob \| blame \| history
test/libapt/getlistoffilesindir_test.cc		diff \| blob \| blame \| history
test/libapt/openmaybeclearsignedfile_test.cc	[new file with mode: 0644]	blob