Replies: 1 comment
-
I made a patch that adds AEAD support to OpenKeychain at https://github.com/yescallop/open-keychain. The patch may be a little convoluted as it uses many reflections, but it has worked perfectly for 7 months, during which I used a patched version of OpenKeychain and GPG 2.4+ to encrypt and decrypt a bunch of files created by each other. It would be nice if anyone can turn this patch into one that is acceptable upstream. |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
A number of issues here (#2096, #2728, #2812, #2830) dating back to June 2021 report a lack of OCB AEAD support as causing fatal errors for file decryption ("Encountered an error reading input data"). Most desktop users use GPG to generate keys. Keys generated in GPG 2.3 and above have OCB AEAD support by default and GPG will use OCB AEAD by default if the key supports it. BouncyCastle introduced support for OpenPGP AEAD in release 1.74 in June 2023.
Are there any plans to update OpenKeychain to support OCB AEAD in light of the BouncyCastle update?
I know that this project has been in maintenance mode since August 2021. A workaround suggested in some discussions is to remove OCB from the preferences of any keys causing the problem. GPG does not allow the removal of AEAD or generation of keys without AEAD with the default cipher suite. A workaround suggested by GPG is to generate keys in OpenKeychain.
Related discussions:
https://dev.gnupg.org/T6133
android-password-store/Android-Password-Store#1429
https://www.reddit.com/r/GPGpractice/comments/11og6fp/openkeychain_android_help/
bcgit/bc-java#1346
Beta Was this translation helpful? Give feedback.
All reactions