Page MenuHome GnuPG

Allow OCB encryption in 2.2
Closed, ResolvedPublic

Description

Given that we use OCB already for some time in 2.3 and thus Gpg4win 4 and that decryption support is available for even longer in 2.2 and 2.3, its time to also allow encryption using OCB mode and create the keys with the AEAD feature flag set.

Related Objects

Event Timeline

werner triaged this task as Normal priority.Oct 31 2022, 2:32 PM
werner created this task.
werner created this object with edit policy "Contributor (Project)".
werner changed the task status from Open to Testing.Oct 31 2022, 4:26 PM
werner moved this task from Restricted Project Column to Restricted Project Column on the Restricted Project board.
werner moved this task from Restricted Project Column to Restricted Project Column on the Restricted Project board.Dec 12 2022, 11:45 AM
werner moved this task from Backlog to QA on the gnupg22 board.
werner moved this task from Restricted Project Column to Restricted Project Column on the Restricted Project board.
ebo moved this task from Restricted Project Column to Restricted Project Column on the Restricted Project board.
ebo added a subscriber: ebo.

Works, setting "compatibility-flags vsd-allow-ocb" in the gpg.conf causes new keys to be generated with the AEAD feature flag OCB. And encryption to that key then uses OCB mode as long as the compatibility-flags is set.

ebo edited projects, added gnupg22 (gnupg-2.2.42); removed gnupg22.