[Feature Request] End-to-end encryption support

[giordy]

I'm adding this feature request because I don't see end-to-end encryption mentioned among the not-yet-supported features.

Given the distributed nature of Matrix, with messages landing on N possible unknown servers it would be nice to have it.

[pravi]

If purple-olm is made a separate plugin, then xmpp/omemo can reuse it as well. see https://developer.pidgin.im/ticket/16801

[penguin42]

I've started doing some work on this, but slowly, so far seem to have uploaded the keys OK and I'm starting to receive d2d messages.
https://github.com/penguin42/purple-matrix/tree/crypto

[PeaceRebel]

Hello, I can with the project. It seems @penguin42 have already made some advances. If he doesn't work on this anymore, I can continue with it. But I may need somebody to mentor me. @pravi

[axelsimon]

If purple-olm is made a separate plugin, then xmpp/omemo can reuse it as well. see https://developer.pidgin.im/ticket/16801

OMEMO has, essentially, been resolved on Pidgin, thanks to the Lurch plugin:
https://github.com/gkdr/lurch

There might be some possible code reuse there.

[andreygursky]

@penguin42, thanks for your efforts! Is #70 a first step or already usable E2E support (perhaps with known limitations)?

[rodneyrod]

How's the progress on this coming along?

I see #70 has not been merged. It quite been a while.
@penguin42 I'm thinking what can I help, although I have no encryption development experience.

[richvdh]

I've merged #70. I believe it provides decryption support, but encryption is not yet supported.

[marcelvb]

Great work so far, but is there any idea if encryption is ever supported? I'm trying to use matrix using riot.im web, riot android app and bitlbee (via libpurple). All seem to have different level of support for encryption and verification and it's very complicated now if you want to use them together.

[darnir]

IMO, if you want to use encryption on the Matrix protocol, the reference Riot clients are your best bet. On all other clients encryption support is currently a hit-n-miss.

[zyphlar]

I just installed and tried receiving encrypted messages in two different encrypted chats, no dice (via Pidgin, Ubuntu). My messages come through unencrypted, but I can't see any other messages. Unencrypted chat rooms work fine.

[x10d]

There is no way to create a new channel without encryption, so now this end-to-end encryption has become a necessity.

[richvdh]

https://github.com/matrix-org/pantalaimon/ might help those wanting to use e2e in clients where support is incomplete

[t3chguy]

There is no way to create a new channel without encryption

In what?
Element lets you create unencrypted rooms
for DMs it'll enable E2EE only if both participants have E2EE keys uploaded.