Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Replace OpenKeychain with GOpenPGP or similar #5662

Open
rishubn opened this issue Sep 11, 2021 · 8 comments
Open

Replace OpenKeychain with GOpenPGP or similar #5662

rishubn opened this issue Sep 11, 2021 · 8 comments
Labels
type: enhancement New features or improvements to existing features.

Comments

@rishubn
Copy link

rishubn commented Sep 11, 2021

Is your feature request related to a problem? Please describe.
OpenKeychain is no longer actively maintained. Eventually it would make sense to move to another PGP implementation (preferably library based) such as gopenpgp.

Android Pass Store is doing something similar

Other than refactoring existing code, the biggest hurdle would be the effort required to create a GUI for the lost features provided by OpenKeychain

What are your thoughts on this?
@rishubn rishubn added the type: enhancement New features or improvements to existing features. label Sep 11, 2021
@life777eternal life777eternal mentioned this issue Sep 21, 2021
Closed
@xandro0777
Copy link

Wondering if PGPainless could be used - Android Pass Store goes this way. It is Pure Java so has some advantages over using Go.

https://github.com/pgpainless/pgpainless
android-password-store/Android-Password-Store#1522

@wiktor-k
Copy link
Contributor

I'd also recommend PGPainless. It's not only Android Pass Store that uses it but ltt.rs too. It seems the author used OpenKeychain for their previous project (Conversations.im) but later migrated to PGPainless.

Although the API would change so this is not an easy solution...

@CoelacanthusHex
Copy link

@ShellWen forked openkeychain and actively maintain it.
https://github.com/ShellWen/open-keychain-reborn

@ShellWen
Copy link
Contributor

@ShellWen forked openkeychain and actively maintain it.
https://github.com/ShellWen/open-keychain-reborn

And also, I will add lots of features as you want to. 😜

@vanitasvitae
Copy link

Author of PGPainless here, I'd love to assist, should you decide to give PGPainless a try :)

@ddevault
Copy link

ddevault commented Jan 4, 2024

Mostly useless comment to add here, but K-9 with OpenKeychain is going to slowly stop being able to deal with new encrypted emails as AEAD is rolled out into GnuPG. AEAD-encrypted emails (the GnuPG default since 2.3) cannot be decrypted with OpenKeychain.

@vanitasvitae
Copy link

vanitasvitae commented Jan 4, 2024
edited
Loading

For completeness/context: GnuPG decided to diverge from the OpenPGP protocol by rolling their own, nonstandard flavor of OpenPGP called LibrePGP.

Bouncycastle will probably implement the "official" AEAD flavor in the coming months, though this does not solve the problem of OpenKeychain being EOL.

For now, most Linux distributions patch GnuPG, reverting the AEAD changes to maintain compatibility with the ecosystem.

@xandro0777
Copy link

xandro0777 commented Jan 4, 2024 via email

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
type: enhancement New features or improvements to existing features.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
7 participants
@ddevault @wiktor-k @rishubn @vanitasvitae @ShellWen @CoelacanthusHex @xandro0777