agent: Use OCB for key protection with --enable-extended-key-format.

* agent/protect.c (PROT_DEFAULT_TO_OCB): Remove macro. (agent_protect): Make the default protection mode depend on the extend key format option. Signed-off-by: Werner Koch <wk@gnupg.org>
author: Werner Koch <wk@gnupg.org> 2017-04-02 20:02:55 +0200
committer: Werner Koch <wk@gnupg.org> 2017-04-02 20:02:55 +0200
commit: d24375271b97e45deaeb1ef0a8434c64066ba2e8 (patch)
tree: 610e0d18703b6727935a72afcae6e8785714680b /doc/gpg-agent.texi
parent: kbx: Unify blob reading functions. (diff)
download: gnupg2-d24375271b97e45deaeb1ef0a8434c64066ba2e8.tar.xz
gnupg2-d24375271b97e45deaeb1ef0a8434c64066ba2e8.zip
1 files changed, 2 insertions, 1 deletions
diff --git a/doc/gpg-agent.texi b/doc/gpg-agent.texi
index ca9d469fd..6aab646f0 100644
--- a/doc/gpg-agent.texi
+++ b/doc/gpg-agent.texi
@@ -579,7 +579,8 @@ the passphrase of a key will also convert the key to that new format.
 Using this option makes the private keys unreadable for gpg-agent
 versions before 2.1.12.  The advantage of the extended private key
 format is that it is text based and can carry additional meta data.
-
+Note that this option also changes the key protection format to use
+OCB mode.
 
 @anchor{option --enable-ssh-support}
 @item --enable-ssh-support
author	Werner Koch <wk@gnupg.org>	2017-04-02 20:02:55 +0200
committer	Werner Koch <wk@gnupg.org>	2017-04-02 20:02:55 +0200
commit	d24375271b97e45deaeb1ef0a8434c64066ba2e8 (patch)
tree	610e0d18703b6727935a72afcae6e8785714680b /doc/gpg-agent.texi
parent	kbx: Unify blob reading functions. (diff)
download	gnupg2-d24375271b97e45deaeb1ef0a8434c64066ba2e8.tar.xz gnupg2-d24375271b97e45deaeb1ef0a8434c64066ba2e8.zip