]> git.saurik.com Git - apt.git/commitdiff
methods/gpgv: Reject weak digest algorithms
authorJulian Andres Klode <jak@debian.org>
Mon, 14 Mar 2016 14:35:14 +0000 (15:35 +0100)
committerJulian Andres Klode <jak@debian.org>
Mon, 14 Mar 2016 14:37:05 +0000 (15:37 +0100)
This keeps a list of weak digest algorithms. For now, only MD5
is disabled, as SHA1 breaks to many repos.

methods/gpgv.cc

index f17990245533f1f3b6ca9422ffa3fa6965b8ad47..06e1612e61998cbb2b24bca17052fb17dc38f10e 100644 (file)
 #include <sys/wait.h>
 #include <unistd.h>
 
+#include <array>
 #include <algorithm>
+#include <sstream>
+#include <iterator>
 #include <iostream>
 #include <string>
 #include <vector>
@@ -36,6 +39,12 @@ using std::vector;
 #define GNUPGREVKEYSIG "[GNUPG:] REVKEYSIG"
 #define GNUPGNODATA "[GNUPG:] NODATA"
 
+static const std::array<string, 1> WeakDigests {
+   "1", // MD5
+// "2", // SHA1
+// "3", // RIPEMD-160
+};
+
 class GPGVMethod : public aptMethod
 {
    private:
@@ -139,12 +148,19 @@ string GPGVMethod::VerifyGetSigners(const char *file, const char *outfile,
       else if (strncmp(buffer, GNUPGVALIDSIG, sizeof(GNUPGVALIDSIG)-1) == 0)
       {
          char *sig = buffer + sizeof(GNUPGVALIDSIG);
+         std::istringstream iss((string(sig)));
+         vector<string> tokens{std::istream_iterator<string>{iss},
+                               std::istream_iterator<string>{}};
          char *p = sig;
          while (*p && isxdigit(*p))
             p++;
          *p = 0;
          if (Debug == true)
             std::clog << "Got VALIDSIG, key ID: " << sig << std::endl;
+         // Reject weak digest algorithms
+         if (std::find(WeakDigests.begin(), WeakDigests.end(), tokens[7]) != WeakDigests.end())
+            BadSigners.push_back(string(sig));
+
          ValidSigners.push_back(string(sig));
       }
    }