Adding support for KDBX4 file format #148
Comments
|
That's gonna be a doozy to implement... looks like a fun challenge! |
|
Yep, I think the same 😄 |
|
Dependency wise it requires ChaCha20 and Argon2. ChaCha20 is implemented in libgcrypt 1.7 but the release is less than a year old so not widely supported in current Linux distros. For Argon2 embedding https://github.com/P-H-C/phc-winner-argon2 seems to be the best option for now. |
|
Just include library statically, you do not have to folow Linux rules to stay behind with development. |
|
KeePassX related PR keepassx/keepassx#200 |
|
Didn't see this sorry, so please keep us updated on your progress :). I appreciate your work on KDBX 4 support. |
|
Wouldn't the PR in @TheZ3ro's comment actually resolve this? |
|
It kind of does, but the way it was implemented was not very good. It intertwined the code between kdbx3 and kdbx4 instead of building a new reader/writer class specifically for kdbx4. |
|
O ChaCha20, where art thou? |
|
We are basically through all the ground work and will add new ciphers from here: #1230 |
|
Is there any way to keep building the develop branch of KPXC on current Ubuntu LTS based Linux distros? Due to the lack of Argon2 and the required gcrypt libs, this looks like a dead end, at least until April this year. I've been using the develop branch since a long time ago. Probably the suggestion would be to use the master branch, but there is a long list of features/bugfixes that are only in the develop branch as the most "stable" one (more than 6 months of code). Perhaps due to the intrinsic complications of the KDBX4 implementation, I'm missing something and this WIP with no ETA can't be done in a feature branch. Any suggestions are welcome, thanks |
|
Why don’t you just build argon2 yourself? See #1401. |
|
Ubuntu ships libargon2-0-dev starting with 16.04. For 14.04 you can install it from our PPA: https://launchpad.net/~phoerious/+archive/ubuntu/keepassxc We also ship the required versions of libgcrypt20 and libgpg-error for both 14.04 and 16.04 through that PPA. |
|
Thanks for the suggestions. I'll try those. |
|
Is there a Windows build available with implemented KDBX4 features? |
|
Not yet. We will release a beta version soon. |
- Add support for KDBX 4.0, Argon2 and ChaCha20 [#148, #1179, #1230, #1494] - Add SSH Agent feature [#1098, #1450, #1463] - Add preview panel with details of the selected entry [#879, #1338] - Add more and configurable columns to entry table and allow copying of values by double click [#1305] - Add KeePassXC-Browser API as a replacement for KeePassHTTP [#608] - Deprecate KeePassHTTP [#1392] - Add support for Steam one-time passwords [#1206] - Add support for multiple Auto-Type sequences for a single entry [#1390] - Adjust YubiKey HMAC-SHA1 challenge-response key generation for KDBX 4.0 [#1060] - Replace qHttp with cURL for website icon downloads [#1460] - Remove lock file [#1231] - Add option to create backup file before saving [#1385] - Ask to save a generated password before closing the entry password generator [#1499] - Resolve placeholders recursively [#1078] - Add Auto-Type button to the toolbar [#1056] - Improve window focus handling for Auto-Type dialogs [#1204, #1490] - Auto-Type dialog and password generator can now be exited with ESC [#1252, #1412] - Add optional dark tray icon [#1154] - Add new "Unsafe saving" option to work around saving problems with file sync services [#1385] - Add IBus support to AppImage and additional image formats to Windows builds [#1534, #1537] - Add diceware password generator to CLI [#1406] - Add --key-file option to CLI [#816, #824] - Add DBus interface for opening and closing KeePassXC databases [#283] - Add KDBX compression options to database settings [#1419] - Discourage use of old fixed-length key files in favor of arbitrary files [#1326, #1327] - Correct reference resolution in entry fields [#1486] - Fix window state and recent databases not being remembered on exit [#1453] - Correct history item generation when configuring TOTP for an entry [#1446] - Correct multiple TOTP bugs [#1414] - Automatic saving after every change is now a default [#279] - Allow creation of new entries during search [#1398] - Correct menu issues on macOS [#1335] - Allow compilation on OpenBSD [#1328] - Improve entry attachments view [#1139, #1298] - Fix auto lock for Gnome and Xfce [#910, #1249] - Don't remember key files in file dialogs when the setting is disabled [#1188] - Improve database merging and conflict resolution [#807, #1165] - Fix macOS pasteboard issues [#1202] - Improve startup times on some platforms [#1205] - Hide the notes field by default [#1124] - Toggle main window by clicking tray icon with the middle mouse button [#992] - Fix custom icons not copied over when databases are merged [#1008] - Allow use of DEL key to delete entries [#914] - Correct intermittent crash due to stale history items [#1527] - Sanitize newline characters in title, username and URL fields [#1502] - Reopen previously opened databases in correct order [#774] - Use system's zxcvbn library if available [#701] - Implement various i18n improvements [#690, #875, #1436]
|
The FAQ should be updated: https://keepassxc.org/docs/#faq-kdbx4. |
|
Done. Thanks for the reminder. |
|
Why not make argon2 by default KDF? |
|
It's going to be the default in 2.4. |
|
@phoerious thanks for your answer! |
|
@phoerious, btw. Where can I find upcoming release dates? |
|
@Generator, thanks! |
|
The release dates set for milestones are not accurate. They are merely ballpark guesses of when we think we'll be finished. |
http://keepass.info/help/kb/kdbx_4.html
The text was updated successfully, but these errors were encountered: