Diffusion GnuPG a0d0cbee7654

gpg,sm: Fix compliance checking for decryption.
a0d0cbee7654
Actions

Tags

None

Subscribers

None

Description

gpg,sm: Fix compliance checking for decryption.

* common/compliance.c (gnupg_pk_is_compliant): Remove the Elgamal
signing check.  We don't support Elgamal signing at all.
(gnupg_pk_is_allowed) <de-vs>: Revert encryption/decryption for RSA.
Check the curvenames for ECDH.
* g10/pubkey-enc.c (get_session_key): Print only a warning if the key
is not compliant.
* sm/decrypt.c (gpgsm_decrypt): Ditto.  Use the same string as in gpg
so that we have only one translation.

We always allow decryption and print only a note if the key was not
complaint at the encryption site.

GnuPG-bug-id: T3308
Signed-off-by: Werner Koch <wk@gnupg.org>

Details

Provenance

Authored on Jul 27 2017, 1:56 PM

Parents

rG6d95611d01b0: indent: Wrap an overlong line.

Branches

Unknown

Tags

Unknown

Tasks

T3308: Compliance: Decryption in de-vs with bp256 key fails

Event Timeline

• werner added a task: T3308: Compliance: Decryption in de-vs with bp256 key fails.Jul 27 2017, 2:05 PM

• werner committed rGa0d0cbee7654: gpg,sm: Fix compliance checking for decryption. (authored by • werner).Jul 27 2017, 1:56 PM

• werner mentioned this in T3306: Compliance: Decryption with non compliant key fails.Jul 27 2017, 2:10 PM

• werner mentioned this in rG4e117f206beb: gpg,sm: Error out on compliance mismatch while decrypting..Aug 1 2017, 9:02 AM

Changes (3)

Path

Size

common/

g10/

sm/

rGa0d0cbee7654

common/compliance.c

Loading...

g10/pubkey-enc.c

Loading...

sm/decrypt.c

Loading...