AW: GPG key generated on Windows...

Werner Koch wk at
Sun Jan 9 12:14:27 CET 2022

On Sun,  9 Jan 2022 10:25, Robert Flosbach said:

> For future reference and people having the same issue: gpg2.3
> introduced a new packet type 20 which provides authenticated
> encryption with associated data (AEAD) [1]. A key generated with
> gpg2.3 supports this encryption type and encryption in Windows (using
> the current Gpg4win 4.0.0) defaults to AEAD for a key generated with

There are two ways to change this: the first is to change the
preferences on your key (using 2.3's --edit-key) and the second is to

--8<---------------cut here---------------start------------->8---
ignore-invalid-option personal-aead-preferences
personal-aead-preferences none
--8<---------------cut here---------------end--------------->8---

into gpg.conf .  From the man page:

  --personal-aead-preferences string
    Set the list of personal AEAD preferences to string.  Use gpg
    --version to get a list of available algorithms, and use none to set
    no preference at all.  This allows the user to safely override the
    algorithm chosen by the recipient key preferences, as GPG will only
    select an algorithm that is usable by all recipients.  The most
    highly ranked cipher in this list is also used for the --symmetric
    encryption command.

(the ignore-invalid-option line allows to use the same gpg.conf
 also with gpg 2.2)



Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 227 bytes
Desc: not available
URL: <>

More information about the Gnupg-users mailing list