Oh, no: inter-version 3DES incompatibility strikes again :-(

Werner Koch wk at gnupg.org
Wed Mar 8 12:43:00 CET 2000

On Wed, 8 Mar 2000, Enzo Michelangeli wrote:

> The problem occurs trying to decrypt with PGP data encrypted with GnuPG, not
> the other way round. GnuPG 1.0.1 creates this sort of packets:
> :symkey enc packet: version 4, cipher 2, s2k 3, hash 3

> ...whereas PGP 6.5.1 creates these others (with another plaintext):

> :symkey enc packet: version 4, cipher 2, s2k 3, hash 2

GnuPG uses RIPEMD-160 and PGP uses SHA-1 as the hash algorith used to 
make a key out of the passphrase.  I can't see that any of these
implementaions violate RFC2440 here.  I know that SHA-1 is a required
alogorithms and RIPE is optional but because there is no way to
negotiate this parameters (like the preferences we use with public
keys) both encodings are valid.


More information about the Gnupg-devel mailing list