Werner Koch
d1f2a6d9f7
gpg: Switch to AES256 for symmetric encryption in de-vs mode. ...
* g10/gpg.c (set_compliance_option): For AES256 and SHA256 in de-vs
mode.
* g10/encrypt.c (setup_symkey): Add extra compliance check.
(encrypt_simple): Avoid printing a second error oncplinace failure.
--
Because we used the RFC4880 mode as base for the de-vs mode we got
3DES as symmetric encryption algorithm. With the default gnupg mode
that was already used. The new extra compliance checks are added to
detect whether a --personal-cipher-preference or --cipher-algo option
tried to override the algorithms. They are still possible but now
non-compliant algorithms will throw an error.
Manual testing can be done with commands like this:
gpg --no-options --compliance=de-vs \
--personal-cipher-preferences "S1 S7" \
--pinentry-mode loopback -v --passphrase abc -ac </etc/motd
Here the command fails due to IDEA (S1) being the preferred cipher
algorithm. Using "--s2k-digest-algo SHA1" instead of
--personal-cipher-preferences will also fail.
Signed-off-by: Werner Koch <wk@gnupg.org>
2020-11-03 15:37:40 +01:00
2017-05-11 18:12:37 +02:00
2019-05-14 11:20:07 +09:00
2020-06-09 10:32:47 +09:00
2020-10-26 12:50:30 +01:00
2020-09-08 15:34:42 +09:00
2020-09-01 20:43:57 +02:00
2017-07-24 20:09:52 +02:00
2020-09-24 16:47:10 +02:00
2020-10-26 12:50:30 +01:00
2016-11-02 12:53:58 +01:00
2018-11-08 12:14:23 +09:00
2018-05-29 12:42:52 +02:00
2017-04-11 13:52:19 +09:00
2018-05-02 20:15:10 +02:00
2020-09-01 20:43:57 +02:00
2017-08-01 19:08:16 +02:00
2020-04-16 08:52:29 +02:00
2019-05-17 13:40:24 +02:00
2019-07-18 11:02:34 +09:00
2020-01-17 16:09:01 +09:00
2020-08-24 19:47:26 +02:00
2020-06-23 10:10:29 +09:00
2020-11-03 15:37:40 +01:00
2019-07-25 11:21:58 +09:00
2019-07-25 11:21:58 +09:00
2019-09-30 14:08:13 +02:00
2020-10-30 15:21:20 +09:00
2018-11-08 21:31:12 +02:00
2020-06-09 18:16:44 +02:00
2020-09-21 09:20:47 +02:00
2015-02-04 09:15:34 +01:00
2020-11-03 15:37:40 +01:00
2019-11-28 12:05:32 +01:00
2015-02-04 09:15:34 +01:00
2020-02-10 16:50:47 +01:00
2017-03-07 20:25:54 +09:00
2016-11-05 12:02:19 +01:00
2020-06-08 20:13:25 +02:00
2017-03-07 20:25:54 +09:00
2020-09-24 16:47:10 +02:00
2019-03-15 20:41:38 +01:00
2020-11-02 11:32:27 +09:00
2017-07-27 11:38:57 +02:00
2020-10-27 17:21:19 +01:00
2018-10-25 16:53:05 -04:00
2020-09-22 16:20:41 +02:00
2020-10-26 12:50:13 +01:00
2020-08-07 13:02:47 +09:00
2020-11-02 09:14:03 +01:00
2020-10-28 17:06:27 +01:00
2020-10-05 14:21:31 +02:00
2020-08-07 13:02:47 +09:00
2020-10-28 17:06:27 +01:00
2020-10-20 16:38:06 +02:00
2017-03-31 20:07:20 +02:00
2017-07-13 18:29:01 +02:00
2020-03-13 13:19:31 +01:00
2020-11-02 13:45:19 +01:00
2020-07-03 16:15:29 +02:00
2020-08-20 10:54:17 +02:00
2017-03-07 20:25:54 +09:00
2020-10-20 12:15:56 +02:00
2020-11-02 17:34:29 +01:00
2020-02-18 18:07:46 -05:00
2019-07-11 12:32:44 +09:00
2020-10-20 16:38:06 +02:00
2020-10-27 17:21:19 +01:00
2020-06-08 15:22:58 +02:00
2020-06-09 10:32:47 +09:00
2020-07-08 14:33:25 +02:00
2020-11-02 17:34:29 +01:00
2019-07-23 12:04:21 +09:00
2020-06-09 11:00:16 +02:00
2020-10-30 15:21:20 +09:00
2020-06-09 15:45:51 +09:00
2019-05-17 13:40:24 +02:00
2017-03-07 20:25:54 +09:00
2020-07-14 11:01:45 +02:00
2017-01-23 19:16:55 +01:00
2020-10-28 17:06:27 +01:00
2017-02-21 13:11:46 -05:00
2016-11-05 12:02:19 +01:00
2017-03-07 20:32:09 +09:00
2017-03-07 20:25:54 +09:00
2020-06-09 10:32:47 +09:00
2020-11-02 13:45:19 +01:00
2020-11-02 13:45:19 +01:00
2020-02-12 17:29:51 +01:00
2019-09-09 15:01:47 +02:00
2015-11-17 14:53:03 +01:00
2015-09-02 15:08:57 +02:00
2019-09-09 15:01:47 +02:00
2016-11-05 12:02:19 +01:00
2016-03-08 14:08:49 +01:00
2017-05-10 11:13:03 +09:00
2018-03-27 08:48:00 +02:00
2020-10-20 16:38:06 +02:00
2018-03-26 18:06:43 +02:00
2020-06-08 20:13:25 +02:00
2020-02-10 16:50:47 +01:00
2020-09-04 11:32:47 +02:00
2020-10-20 16:38:06 +02:00
2016-12-06 12:16:56 +01:00
2018-07-06 11:40:16 +02:00
2020-10-27 17:21:19 +01:00
2018-07-06 11:40:16 +02:00
2020-02-10 15:32:55 +01:00
2016-11-05 12:02:19 +01:00
d1f2a6d9f7