Home GnuPG
Diffusion GnuPG 50e81ad38d2b

gpg: Make sure a DECRYPTION_OKAY is never issued for a bad OCB tag.

Description

gpg: Make sure a DECRYPTION_OKAY is never issued for a bad OCB tag.

* g10/mainproc.c (proc_encrypted): Force a decryption failure if any
error has been seen.
* g10/decrypt-data.c (aead_checktag): Issue an ERROR line.

Note that gpg in any case returns a failure exit code but due to
double forking GPGME would not see it.

Details

Provenance
wernerAuthored on Mar 14 2024, 9:41 PM
Parents
rGf78501c54532: gpg: new list-option store-x509-notations.
Branches
Unknown
Tags
Unknown
Tasks
T7042: AEAD mode does not properly handle modified cipher text