x/crypto/openpgp: Support Encrypted OpenPGP PrivateKey packet

[tcz001]

Hi,
We are working on providing an alternative of GnuPG,
With the help of x/crypto/openpgp we can easily read and parse a key, and decrypt it with passphrase,
But there's no support for encryption & serialization of PrivateKeys, as the comment says: TODO(agl): support encrypted private keys

We made some implementation of this feature, but it needs review and suggestion about the configuration for s2k related parameters (s2kMode, salt, hashFunction, iteratedCount)

Related RFC4880 https://tools.ietf.org/html/rfc4880#section-3.7.2.1

[gopherbot]

CL https://golang.org/cl/26773 mentions this issue.

[ianlancetaylor]

CC @agl

[andybons]

@FiloSottile

[nickname76]

2 years later... Where is this feauture?

[FiloSottile]

x/crypto/openpgp is looking for maintainers.

https://groups.google.com/d/msg/golang-openpgp/_P6AmeCmD9w/raw7JhKuCAAJ

[FiloSottile]

Per the accepted #44226 proposal and due to lack of maintenance, the golang.org/x/crypto/openpgp package is now frozen and deprecated. No new changes will be accepted except for security fixes. The package will not be removed.

If this is a security issue, please email security@golang.org and we will assess it and provide a fix.

If you're looking for alternatives, consider the crypto/ed25519 package for simple signatures, golang.org/x/mod/sumdb/note for inline signatures, or filippo.io/age for encryption. You can read a summary of OpenPGP issues and alternatives here.

If you are required to interoperate with OpenPGP systems and need a maintained package, we suggest considering one of multiple community forks of golang.org/x/crypto/openpgp. We don't endorse any specific one.