New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Dash escaping is not handled correctly #341
Comments
mgorny
added a commit
to mgorny/PGPy
that referenced
this issue
Aug 26, 2020
According to RFC 4880, 'an implementation MAY dash-escape any line, SHOULD dash-escape lines commencing "From" followed by a space [...]'. Therefore it is necessary to unescape all lines starting with dash-space sequences, and not just these that have a dash following this sequence. Fixes SecurityInnovation#341
mgorny
added a commit
to mgorny/PGPy
that referenced
this issue
Aug 30, 2020
According to RFC 4880, 'an implementation MAY dash-escape any line, SHOULD dash-escape lines commencing "From" followed by a space [...]'. Therefore it is necessary to unescape all lines starting with dash-space sequences, and not just these that have a dash following this sequence. Fixes SecurityInnovation#341
mgorny
added a commit
to mgorny/PGPy
that referenced
this issue
Sep 8, 2020
According to RFC 4880, 'an implementation MAY dash-escape any line, SHOULD dash-escape lines commencing "From" followed by a space [...]'. Therefore it is necessary to unescape all lines starting with dash-space sequences, and not just these that have a dash following this sequence. Fixes SecurityInnovation#341 Signed-off-by: Michał Górny <mgorny@gentoo.org>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Consider the following code sample:
This should yield successful verification, vice gpg:
Per the spec,
-
-escaping can be used to escape any line, not just lines with dashes.The text was updated successfully, but these errors were encountered: