Diffusion GnuPG a0d0cbee7654

gpg,sm: Fix compliance checking for decryption.

Authored by werner on Jul 27 2017, 1:56 PM.

Description

gpg,sm: Fix compliance checking for decryption.

* common/compliance.c (gnupg_pk_is_compliant): Remove the Elgamal
signing check.  We don't support Elgamal signing at all.
(gnupg_pk_is_allowed) <de-vs>: Revert encryption/decryption for RSA.
Check the curvenames for ECDH.
* g10/pubkey-enc.c (get_session_key): Print only a warning if the key
is not compliant.
* sm/decrypt.c (gpgsm_decrypt): Ditto.  Use the same string as in gpg
so that we have only one translation.

We always allow decryption and print only a note if the key was not
complaint at the encryption site.

  • GnuPG-bug-id: T3308
  • Signed-off-by: Werner Koch <wk@gnupg.org>

Details

Committed
wernerJul 27 2017, 1:56 PM
Parents
rG6d95611d01b0: indent: Wrap an overlong line.
Branches
Unknown
Tags
Unknown
Tasks
T3308: Compliance: Decryption in de-vs with bp256 key fails