Re: multiple recipients encryption and decryption in gpgsm

[Werner Koch via Gnupg-users]

On Thu, 28 Nov 2019 10:57, Yves T said:

>   1.  is B able to decrypt the file if he has not the secret key from A

Yes.  As long as the secret key (aka private key) is available

Quick test:

  $ fortune | gpgsm -ev  -r 0xE297583E -r  0xCA89261C >/tmp/testenc

The first -r ist for s/n 1A02 and the secon for 1A04.  Now switching to
another account where we have only the secret part for 1A04:

  $ gpgsm -vd 

signature.asc
Description: PGP signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: multiple recipients encryption and decryption in gpgsm

[Ángel]

On 2019-11-26 at 17:51 +, Yves T via Gnupg-users wrote:
> Dears,
>  
> A client uses gpgsm with multiple recipient options. The first option
> refers to his own certificate, the second option to the recipients
> certificate.
> The receiving end has trouble decrypting the file. Output mentions
> gpgsm: error decrypting session key: No secret key
> gpgsm: decrypting session key failed: No secret key
> 
> The solution which was mentioned to us was to use local-user option
> but this does not seem to work.
> 
> Is it possible in gpgsm to encrypt for different recipients and how
> can they decrypt. Can you please complete with an example?
> 
> Thank you.
> 
Sorry for the obvious but, does the receiving part have the private part
of the certificate that the sender thinks belong to them?

What you report seems like a perfect message with the receiver not
having their own keys imported.

Cheers

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users