gpg: Allow smaller session keys with Kyber

* g10/pubkey-enc.c (get_it): Do not error out when decrypting a session key of less than 32 octets encrypted to a Kyber key. -- GnuPG-bug-id: 7472 Signed-off-by: Damien Goutte-Gattat <dgouttegattat@incenp.org>
2025-01-09 12:54:23 +01:00 · 2025-01-03 20:59:57 +00:00 · 2025-01-03 20:59:57 +00:00 · 80828512b6
commit 80828512b6
parent 647fa16be7
1 changed files with 2 additions and 6 deletions
--- a/g10/pubkey-enc.c
+++ b/g10/pubkey-enc.c
@ -307,13 +307,9 @@ get_it (ctrl_t ctrl,

  if (sk->pubkey_algo == PUBKEY_ALGO_KYBER)
    {
-      /* We expect a 32 byte session key.  We should not see this
-       * error here because due to the KEM mode the agent_pkdecrypt
-       * should have already failed.  */
-      if (nframe != 32)
+      if (nframe != 32 && opt.flags.require_pqc_encryption)
        {
-          err = gpg_error (GPG_ERR_WRONG_SECKEY);
-          goto leave;
+          log_info (_("WARNING: session key is not quantum-resistant\n"));
        }
      dek->keylen = nframe;
      dek->algo = enc->d.seskey_algo;