gpg tag 20

[guild-jonathan-kaczynski]

I built the latest version of pgpdump (0.35) and an encrypted file I have says "unknown(tag 20)", just like the older version of pgpdump installed on my system.

# /opt/bin/pgpdump encryptedfile
Old: Public-Key Encrypted Session Key Packet(tag 1)(524 bytes)
	New version(3)
	Key ID - 0xDCE2000000000000
	Pub alg - RSA Encrypt or Sign(pub 1)
	RSA m^e mod n(4095 bits) - ...
		-> m = sym alg(1 byte) + checksum(2 bytes) + PKCS-1 block type 02
New: unknown(tag 20)(65536 bytes) partial start
New: 	(65536 bytes) partial continue
...snip...
New: 	(461 bytes) partial end

getsops/sops#896 leads me to think that "tag 20" might be a new tag, "AEAD Encrypted Data Packet", from draft-ietf-openpgp-rfc4880bis-06.

If this is the case, is there a plan for pgpdump to support it?

[kazu-yamamoto]

I think you are right. PR is welcome!

[galaxiesFarApart]

Whilst "[AEAD Encrypted Data Packet (Tag 20)]" is mentioned in ..bis-06 and ...bis-10, it does not appear in crypto-refresh-11 ... crypto-refresh-13 which show Packet Type 20 as "Reserved".

I was going to start some work on AEAD Encrypted Data Packet but stopped when I saw the status in the "crypto-refresh" documents.

https://datatracker.ietf.org/doc/html/draft-ietf-openpgp-crypto-refresh-11

[kazu-yamamoto]

Gentle ping.