diff options
author | Thorsten Behrens <Thorsten.Behrens@CIB.de> | 2017-07-17 02:17:16 +0200 |
---|---|---|
committer | Thorsten Behrens <Thorsten.Behrens@CIB.de> | 2017-07-17 02:40:31 +0200 |
commit | 40f181207574827827d2bf1b4ad72d46fc8ff1fb (patch) | |
tree | 5516dd96136bafbd1b54b148ea09f8fc5bee941f /xmlsecurity/source/component | |
parent | c1bd6f9bb41859911e59aefaf238b8da80284a8f (diff) |
gpg4libre: use full SHA1 hash for key identification
Read and write full 20 bytes/40 hex chars of SHA1 key hash,
instead of some abridged versions. See also
https://lists.debian.org/debian-devel/2016/08/msg00215.html
Change-Id: I741afc94ac7cf559880fe55ff02420723e13310d
Reviewed-on: https://gerrit.libreoffice.org/40027
Reviewed-by: Thorsten Behrens <Thorsten.Behrens@CIB.de>
Tested-by: Thorsten Behrens <Thorsten.Behrens@CIB.de>
Diffstat (limited to 'xmlsecurity/source/component')
-rw-r--r-- | xmlsecurity/source/component/documentdigitalsignatures.cxx | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/xmlsecurity/source/component/documentdigitalsignatures.cxx b/xmlsecurity/source/component/documentdigitalsignatures.cxx index 832d4d082034..9d94b1845fd9 100644 --- a/xmlsecurity/source/component/documentdigitalsignatures.cxx +++ b/xmlsecurity/source/component/documentdigitalsignatures.cxx @@ -353,6 +353,9 @@ DocumentDigitalSignatures::ImplVerifySignatures( } else // GPG { + // TODO not ideal to retrieve cert by keyID, might + // collide, or PGPKeyID format might change - can't we + // keep the xCert ifself in rInfo? rSigInfo.Signer = xGpgSecEnv->getCertificate( rInfo.ouGpgKeyID, xmlsecurity::numericStringToBigInteger("") ); rSigInfo.CertificateStatus = xGpgSecEnv->verifyCertificate(rSigInfo.Signer, Sequence<Reference<css::security::XCertificate> >()); |