diff options
| author | Werner Koch <[email protected]> | 2015-03-20 12:29:20 +0000 |
|---|---|---|
| committer | Werner Koch <[email protected]> | 2015-03-20 12:29:20 +0000 |
| commit | 783a4a98378fa1aa222d5cb7427dd37151feb08b (patch) | |
| tree | db187bef2a5be9751c78b4aae01c093f8075534a | |
| parent | common: Fix syntax error when building with gnutls (diff) | |
| download | gnupg-783a4a98378fa1aa222d5cb7427dd37151feb08b.tar.gz gnupg-783a4a98378fa1aa222d5cb7427dd37151feb08b.zip | |
gpg: Find keys using mail addresses with garbage after the '>'
* kbx/keybox-search.c (blob_cmp_mail): Stop comparing at the '>'.
--
This change allows to find mail addresses like
Joe Doe <[email protected]> bar
Joe Doe <[email protected]> (comment)
using the command
gpg -k '<[email protected]'
or (with syntactic sugar)
gpg -k '<[email protected]>'
These UIDs are ill-formed according to gpg checks but nevertheless are
seen in the wild.
Note, that it does only work with the new keybox format.
Signed-off-by: Werner Koch <[email protected]>
| -rw-r--r-- | kbx/keybox-search.c | 45 |
1 files changed, 31 insertions, 14 deletions
diff --git a/kbx/keybox-search.c b/kbx/keybox-search.c index d22ef1921..b03874d8a 100644 --- a/kbx/keybox-search.c +++ b/kbx/keybox-search.c @@ -385,8 +385,8 @@ blob_cmp_name (KEYBOXBLOB blob, int idx, /* Compare all email addresses of the subject. With SUBSTR given as - True a substring search is done in the mail address. If X509 - states whether thr search is done on an X.509 blob. */ + True a substring search is done in the mail address. The X509 flag + indicated whether the search is done on an X.509 blob. */ static int blob_cmp_mail (KEYBOXBLOB blob, const char *name, size_t namelen, int substr, int x509) @@ -440,27 +440,44 @@ blob_cmp_mail (KEYBOXBLOB blob, const char *name, size_t namelen, int substr, off = get32 (buffer+mypos); len = get32 (buffer+mypos+4); if (off+len > length) - return 0; /* error: better stop here out of bounds */ - if (!x509) + return 0; /* error: better stop here - out of bounds */ + if (x509) { - /* For OpenPGP we need to forward to the mailbox part. */ - for ( ;len && buffer[off] != '<'; len--, off++) + if (len < 2 || buffer[off] != '<') + continue; /* empty name or trailing 0 not stored */ + len--; /* one back */ + if ( len < 3 || buffer[off+len] != '>') + continue; /* not a proper email address */ + off++; + len--; + } + else /* OpenPGP. */ + { + /* We need to forward to the mailbox part. */ + for ( ; len && buffer[off] != '<'; len--, off++) ; + if (len < 2 || buffer[off] != '<') + continue; /* empty name or trailing 0 not stored */ + + off++; /* Point to first char of the mail address. */ + len--; + + /* Search closing '>'. */ + for (mypos=off; len && buffer[mypos] != '>'; len--, mypos++) + ; + if (!len || buffer[mypos] != '>' || off == mypos) + continue; /* Not a proper mail address. */ + len = mypos - off; } - if (len < 2 || buffer[off] != '<') - continue; /* empty name or trailing 0 not stored */ - len--; /* one back */ - if ( len < 3 || buffer[off+len] != '>') - continue; /* not a proper email address */ - len--; + if (substr) { - if (ascii_memcasemem (buffer+off+1, len, name, namelen)) + if (ascii_memcasemem (buffer+off, len, name, namelen)) return idx+1; /* found */ } else { - if (len == namelen && !ascii_memcasecmp (buffer+off+1, name, len)) + if (len == namelen && !ascii_memcasecmp (buffer+off, name, len)) return idx+1; /* found */ } } |