Home GnuPG
Diffusion GPGME b97434fbf087

json: Fix t-decrypt-verify.out for GnuPG >= 2.3.

Description

json: Fix t-decrypt-verify.out for GnuPG >= 2.3.

* tests/json/t-decrypt-verify.out.json: Remove check with key of
04071FB807287134.

GnuPG 2.3 changes how public key decryption works; It collects list of
PUBKEY_ENC packets and then processes an ENCRYPTED* packet. At the
stage of processing an ENCRYPTED* packet, it checks if private keys
can decrypt any of PUBKEY_ENC packets. It does not necessarily
examine all of PUBKEY_ENC packets. Only when it finds a PUBKEY_ENC
packet cannot be decrypted, it reports STATUS_NO_SECKEY with keyid of
that packet.

GnuPG 2.2 or older tries PUBKEY_ENC packets in order, and the first
successful PUBKEY_ENC packet is used. Rest of PUBKEY_ENC packets are
not examined, but STATUS_NO_SECKEY with keyid is reported even when
there is a valid private key.

  • Signed-off-by: NIIBE Yutaka <gniibe@fsij.org>

Details

Provenance
gniibeAuthored on Aug 6 2019, 4:19 AM
Parents
rM6f4a886b30ca: core: Fix arg counting in enginge-gpg
Branches
Unknown
Tags
Unknown