From 37b116db20080f6e1c6ca1dec79014fecf2c3248 Mon Sep 17 00:00:00 2001 From: Werner Koch Date: Thu, 16 Apr 2020 08:52:29 +0200 Subject: [PATCH] gpg: Make AEAD modes subject to compliance checks. * g10/decrypt-data.c (decrypt_data): Move aead algo detection up. -- Note that the AEAD modes are not yet approved for --compliance=de-vs Signed-off-by: Werner Koch --- g10/decrypt-data.c | 23 +++++++++++++---------- 1 file changed, 13 insertions(+), 10 deletions(-) diff --git a/g10/decrypt-data.c b/g10/decrypt-data.c index 771d07417..7f63dffb5 100644 --- a/g10/decrypt-data.c +++ b/g10/decrypt-data.c @@ -221,6 +221,8 @@ int decrypt_data (ctrl_t ctrl, void *procctx, PKT_encrypted *ed, DEK *dek) { decode_filter_ctx_t dfx; + enum gcry_cipher_modes ciphermode; + unsigned int startivlen; byte *p; int rc=0, c, i; byte temp[32]; @@ -242,9 +244,18 @@ decrypt_data (ctrl_t ctrl, void *procctx, PKT_encrypted *ed, DEK *dek) dek->algo_info_printed = 1; } + if (ed->aead_algo) + { + rc = openpgp_aead_algo_info (ed->aead_algo, &ciphermode, &startivlen); + if (rc) + goto leave; + log_assert (startivlen <= sizeof dfx->startiv); + } + else + ciphermode = GCRY_CIPHER_MODE_CFB; + /* Check compliance. */ - if (! gnupg_cipher_is_allowed (opt.compliance, 0, dek->algo, - GCRY_CIPHER_MODE_CFB)) + if (!gnupg_cipher_is_allowed (opt.compliance, 0, dek->algo, ciphermode)) { log_error (_("cipher algorithm '%s' may not be used in %s mode\n"), openpgp_cipher_algo_name (dek->algo), @@ -282,20 +293,12 @@ decrypt_data (ctrl_t ctrl, void *procctx, PKT_encrypted *ed, DEK *dek) if (ed->aead_algo) { - enum gcry_cipher_modes ciphermode; - unsigned int startivlen; - if (blocksize != 16) { rc = gpg_error (GPG_ERR_CIPHER_ALGO); goto leave; } - rc = openpgp_aead_algo_info (ed->aead_algo, &ciphermode, &startivlen); - if (rc) - goto leave; - log_assert (startivlen <= sizeof dfx->startiv); - if (ed->chunkbyte > 56) { log_error ("invalid AEAD chunkbyte %u\n", ed->chunkbyte);