diff options
| author | Werner Koch <[email protected]> | 2022-10-28 13:21:26 +0000 |
|---|---|---|
| committer | Werner Koch <[email protected]> | 2022-10-28 13:24:17 +0000 |
| commit | b71a14238dd2e2a62111cba492a494f562da3f6c (patch) | |
| tree | 40f72e29304cfa8981988439604f3d19e9eb0133 /sm/sign.c | |
| parent | gpg: Fix trusted introducer for user-ids with only the mbox. (diff) | |
| download | gnupg-b71a14238dd2e2a62111cba492a494f562da3f6c.tar.gz gnupg-b71a14238dd2e2a62111cba492a494f562da3f6c.zip | |
gpgsm: Also announce AES256-CBC in signatures.
* sm/sign.c (gpgsm_sign): Add new capability.
--
It might be better to have this. No concrete bug report, though.
Diffstat (limited to 'sm/sign.c')
| -rw-r--r-- | sm/sign.c | 17 |
1 files changed, 10 insertions, 7 deletions
@@ -774,13 +774,16 @@ gpgsm_sign (ctrl_t ctrl, certlist_t signerlist, /* We need to write at least a minimal list of our capabilities to - try to convince some MUAs to use 3DES and not the crippled - RC2. Our list is: - - aes128-CBC - des-EDE3-CBC - */ - err = ksba_cms_add_smime_capability (cms, "2.16.840.1.101.3.4.1.2", NULL, 0); + * try to convince some MUAs to use 3DES and not the crippled + * RC2. Our list is: + * + * aes256-CBC + * aes128-CBC + * des-EDE3-CBC + */ + err = ksba_cms_add_smime_capability (cms, "2.16.840.1.101.3.4.1.42", NULL,0); + if (!err) + err = ksba_cms_add_smime_capability (cms, "2.16.840.1.101.3.4.1.2", NULL,0); if (!err) err = ksba_cms_add_smime_capability (cms, "1.2.840.113549.3.7", NULL, 0); if (err) |