Enable KDF-DO available bit.
authorNIIBE Yutaka <gniibe@fsij.org>
Thu, 2 Nov 2017 04:53:06 +0000 (13:53 +0900)
committerNIIBE Yutaka <gniibe@fsij.org>
Thu, 2 Nov 2017 04:53:06 +0000 (13:53 +0900)
ChangeLog
src/openpgp-do.c

index 673a76e..8c7ee0c 100644 (file)
--- a/ChangeLog
+++ b/ChangeLog
@@ -4,6 +4,8 @@
        (gpg_do_get_initial_pw_setting): New.
        (gpg_do_write_prvkey): Use gpg_do_get_initial_pw_setting.
        (gpg_do_keygen): Likewise.
+       (extended_capabilities): Enable KDF-DO available bit.
+
        * src/openpgp.c (cmd_change_password): Use
        gpg_do_get_initial_pw_setting.
        * src/ac.c (verify_user_0, verify_admin_0): Likewise.
index b78be72..cc4289d 100644 (file)
@@ -112,13 +112,15 @@ const uint8_t historical_bytes[] __attribute__ ((aligned (1))) = {
 /* Extended Capabilities */
 static const uint8_t extended_capabilities[] __attribute__ ((aligned (1))) = {
   10,
-  0x74,                                /*
+  0x75,                                /*
                                 * No Secure Messaging supported
                                 * GET CHALLENGE supported
                                 * Key import supported
                                 * PW status byte can be put
                                 * No private_use_DO
                                 * Algorithm attrs are changable
+                                * No DEC with AES
+                                * KDF-DO available
                                 */
   0,             /* Secure Messaging Algorithm: N/A (TDES=0, AES=1) */
   0x00, CHALLENGE_LEN,                 /* Max size of GET CHALLENGE */