aboutsummaryrefslogtreecommitdiffstats
path: root/g10/sig-check.c
diff options
context:
space:
mode:
authorDaniel Kahn Gillmor <[email protected]>2015-10-19 14:41:23 +0000
committerWerner Koch <[email protected]>2015-10-19 15:33:07 +0000
commitb98939812abf6c643c752ce7c325f98039a1a9e2 (patch)
tree9921a16ce042780839d05d9ce0bc473832e1a095 /g10/sig-check.c
parentgpg: Add option --weak-digest to gpg and gpgv. (diff)
downloadgnupg-b98939812abf6c643c752ce7c325f98039a1a9e2.tar.gz
gnupg-b98939812abf6c643c752ce7c325f98039a1a9e2.zip
gpg: Print warning when rejecting weak digests
* g10/misc.c (print_md5_rejected_note): Rename to .. (print_digest_rejected_note): this. Parameterize function to take an enum gcry_md_algos. * g10/sig-check.c: Use print_digest_rejected_note() when rejecting signatures. -- 76afaed65e3b0ddfa4923cb577ada43217dd4b18 allowed extra --weak-digests, but removed the one call to print_md5_rejected_note(). This replaces and generalizes that warning. Signed-Off-By: Daniel Kahn Gillmor <[email protected]>
Diffstat (limited to '')
-rw-r--r--g10/sig-check.c10
1 files changed, 8 insertions, 2 deletions
diff --git a/g10/sig-check.c b/g10/sig-check.c
index 84930d615..23f42b9cd 100644
--- a/g10/sig-check.c
+++ b/g10/sig-check.c
@@ -282,10 +282,16 @@ do_check( PKT_public_key *pk, PKT_signature *sig, gcry_md_hd_t digest,
if (!opt.flags.allow_weak_digest_algos)
{
if (sig->digest_algo == GCRY_MD_MD5)
- return GPG_ERR_DIGEST_ALGO;
+ {
+ print_digest_rejected_note(sig->digest_algo);
+ return GPG_ERR_DIGEST_ALGO;
+ }
for (weak = opt.additional_weak_digests; weak; weak = weak->next)
if (sig->digest_algo == weak->algo)
- return GPG_ERR_DIGEST_ALGO;
+ {
+ print_digest_rejected_note(sig->digest_algo);
+ return GPG_ERR_DIGEST_ALGO;
+ }
}
/* Make sure the digest algo is enabled (in case of a detached
generated by cgit v1.2.3 (git 2.25.1) at 2025-05-11 09:03:24 +0000