2026617 – gnupg version shipped with Fedora 35 has a bug in symmetric encryption

Bug 2026617 - gnupg version shipped with Fedora 35 has a bug in symmetric encryption

Summary: gnupg version shipped with Fedora 35 has a bug in symmetric encryption

Keywords:
Status:	CLOSED DUPLICATE of bug 2009978
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	gnupg2
Sub Component:
Version:	35
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	low
Target Milestone:	---
Assignee:	Red Hat Crypto Team
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2021-11-25 10:32 UTC by stephen_j_jeffrey
Modified:	2021-11-25 12:55 UTC (History)
CC List:	4 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2021-11-25 12:55:10 UTC
Type:	Bug
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Issue Tracker	FC-340	0	None	None	None	2021-11-25 10:33:12 UTC

Description stephen_j_jeffrey 2021-11-25 10:32:58 UTC

Description of problem:  Symmetric encryption is broken in version gnupg 2.3.2, which is the version that is shipped with Fedora 35


Version-Release number of selected component (if applicable): 2.3.2



How reproducible: easily



Steps to Reproduce:
1. Encrypt file
> echo "test" > test.txt
> gpg -c test.txt

2. Clear password cache
> gpg-connect-agent reloadagent /bye


3. Attempt to decrypt file (it fails - error shown below)
> gpg -d test.txt.gpg



Actual results:

gpg: AES256.CFB encrypted data
gpg: problem with the agent: End of file
gpg: encrypted with 1 passphrase
gpg: decryption failed: Bad session key



Expected results:

After entering your password, the file should be decrypted and output to stdout.



Additional info: Problem can be overcome by upgrading to version 2.3.3

Comment 1 Jakub Jelen 2021-11-25 12:55:10 UTC

Please, try the latest gnupg from updates or updates-testing. Both of the version are on 2.3.3 now.

It is not clear what rpm version are you using, but this was fixed already two months ago with 2.3.2-3 [1] [2].

[1] https://src.fedoraproject.org/rpms/gnupg2/c/bcbc199b433e017236f4afcbe18e8e14001d81d7
[2] https://src.fedoraproject.org/rpms/gnupg2/c/8047d918db50673fd5ad45a209c7a83052d2f4ac

*** This bug has been marked as a duplicate of bug 2009978 ***

Note You need to log in before you can comment on or make changes to this bug.