* getkey.c (get_pubkey_byname): Fix minor security problem with PKA when

importing at -r time. The URL in the PKA record may point to a key put in by an attacker. Fix is to use the fingerprint from the PKA record as the recipient. This ensures that the PKA record is followed. * keyserver-internal.h, keyserver.c (keyserver_import_pka): Return the fingerprint we requested.
author: David Shaw <[email protected]> 2006-02-21 22:23:35 +0000
committer: David Shaw <[email protected]> 2006-02-21 22:23:35 +0000
commit: d038b36c8f814e518c64b608b51a551186c5440e (patch)
tree: 4a33646bcd060d9b5b1ee31cfa90b44a220e87b5 /g10/keyserver-internal.h
parent: * curl-shim.h, curl-shim.c (curl_easy_init, curl_easy_setopt, (diff)
download: gnupg-d038b36c8f814e518c64b608b51a551186c5440e.tar.gz
gnupg-d038b36c8f814e518c64b608b51a551186c5440e.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/g10/keyserver-internal.h b/g10/keyserver-internal.h
index 48cb1ea4f..856f3f3ee 100644
--- a/g10/keyserver-internal.h
+++ b/g10/keyserver-internal.h
@@ -42,7 +42,7 @@ int keyserver_refresh(STRLIST users);
 int keyserver_search(STRLIST tokens);
 int keyserver_fetch(STRLIST urilist);
 int keyserver_import_cert(const char *name);
-int keyserver_import_pka(const char *name);
+int keyserver_import_pka(const char *name,unsigned char *fpr);
 int keyserver_import_name(const char *name);
 int keyserver_import_ldap(const char *name);
author	David Shaw <[email protected]>	2006-02-21 22:23:35 +0000
committer	David Shaw <[email protected]>	2006-02-21 22:23:35 +0000
commit	d038b36c8f814e518c64b608b51a551186c5440e (patch)
tree	4a33646bcd060d9b5b1ee31cfa90b44a220e87b5 /g10/keyserver-internal.h
parent	* curl-shim.h, curl-shim.c (curl_easy_init, curl_easy_setopt, (diff)
download	gnupg-d038b36c8f814e518c64b608b51a551186c5440e.tar.gz gnupg-d038b36c8f814e518c64b608b51a551186c5440e.zip