- 
                Notifications
    You must be signed in to change notification settings 
- Fork 583
New OpenPGP Specification #525
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
base: master
Are you sure you want to change the base?
New OpenPGP Specification #525
Conversation
- Ed25519Legacy with v4 keys/signatures - classes for "native" (octet array) key material - parsing v5/v6 packets (public key, unlocked secret key, signature) - basic verification of v6 signatures - test vectors from crypto-refresh draft
| Wow @roughconsensusandrunningcode this looks fairly comprehensive on first glance! Two initial questions for you: 
 | 
| Hello, sorry for the late answer 
 v5 pubkeys packet format is identical to v6 (the only difference is the first octet in fingerprint computation). v5 seckeys (not yet supported by this PR) are very similar but not identical to v6. v5 signatures are identical to v4 in the packet format but include additional metadata in hash computation. 
 I'm already working on KeyRingGenerator and PgpSecretKey classes. | 
* Unprotected v6 keys does not use the two-octets checksum https://www.ietf.org/archive/id/draft-ietf-openpgp-crypto-refresh-13.html#table-2 * In DoCopyWithNewPassword rewrite Checksum using SHA-1 instead of the deprecated UsageChecksum (MalleableCFB) * Some code deduplication and reorganization
This PR adds a partial support for the new OpenPGP Specification ("Crypto-Refresh" draft, currently in RFC Editor publication queue). Ported from bc-java when possible.
TODO: