git-crypt icon indicating copy to clipboard operation
git-crypt copied to clipboard

Published 20 hours ago verified publisher icon AGWA

Support encrypting with passphrase

Open AGWA opened this issue 8 years ago • 5 comments

git-crypt should support encrypting with a passphrase. It would work much like GPG mode. The internal symmetric key would be encrypted with a passphrase-derived key and stored in .git-crypt/keys.

AGWA avatar Jan 01 '16 23:01 AGWA

+1

Dasoren avatar Feb 02 '16 20:02 Dasoren

+1

hposca avatar Feb 03 '16 00:02 hposca

:+1:

Anachron avatar Mar 17 '16 14:03 Anachron

The internal symmetric key would be encrypted with a passphrase-derived key and stored in .git-crypt/keys.

Or even derived from the passphrase: I'd use something like PBKDF2 or Scrypt. It shouldn't be too difficult to implement.

rnhmjoj avatar Nov 13 '19 14:11 rnhmjoj

I'm very interested in being able to do this. Seems like it would be possible with very little change.

Right now I can symmetrically encrypt the default key, and replace my .git-crypt/keys/default/0/<id>.gpg file, and it works fine, requiring the symmetric passphrase.

However, it relies on the filename based on the fingerprint of my private key. Seems like implementing the feature (aside from user interface additions) merely comes down to having git-crypt try a specific filename if private keys are found.

TheLocehiliosan avatar Dec 15 '19 22:12 TheLocehiliosan