Efail or OpenPGP is safer than S/MIME

Patrick Brunschwig patrick at enigmail.net
Fri May 18 12:18:29 CEST 2018

On 17.05.18 13:03, Werner Koch wrote:
> If you parse DECRYTPION_INFO beplease consider that its current
> defineion (in master) is:
> *** DECRYPTION_INFO <mdc_method> <sym_algo> [<aead_algo>]
>     Print information about the symmetric encryption algorithm and the
>     MDC method.  This will be emitted even if the decryption fails.
>     For an AEAD algorithm AEAD_ALGO is not 0.  GPGSM currently does
>     not print such a status.
> The important print is that MDC_METHOD will be 0 with the forthcoming
> AEAD algorithm.  Thus you need to check whether 3rd argument is there.
>      mdc_method = atoi(arg_1)
>      aead_algo = have_3_args? atoi(arg_3) : 0
>      if (!mdc_method && !aeadalgo)
>         return DECRYPTION_FAILED
> That is what I implement in GPGME this morning.

How far back will that solution work? I.e. is this supported by all
2.0.x and 2.2.x versions of gpg?


More information about the Gnupg-users mailing list