[GH-ISSUE #810] Emails encrypted with Public-Key Encrypted Session Key Packet version 6, unusable with Thunderbird #1120

New issue

Closed

opened 2026-03-14 11:47:01 +03:00 by kerem · 3 comments

kerem commented 2026-03-14 11:47:01 +03:00

Owner

Copy link

Originally created by @codematle on GitHub (Feb 8, 2026).
Original GitHub issue: https://github.com/anonaddy/anonaddy/issues/810

Hi,
It seems that when I add a public PGP key the forwarded emails are encrypted (correctly) but with using RFC 9580 somehow.
This prevents Thunderbird from decrypting the message, log:

:armored input
:off 0: packet header 0xc16c (tag 1, len 108)
:off 110: packet header 0xc16c (tag 1, len 108)
:off 220: packet header 0xc16c (tag 1, len 108)
:off 330: packet header 0xd2c896 (tag 18, len 2390)
Symmetrically-encrypted integrity protected data packet

Interestingly, gpg cli also doesn't want to decrypt the message (grabbed from the raw email):

gpg --decrypt
(...)
gpg: packet(1) with unknown version 6

Only sequoia was able to decrypt it (it shows that the message was correctly encrypted for the three decryption subkeys I have):

sq packet dump
(...)
Public-Key Encrypted Session Key Packet, new CTB, 108 bytes
    Version: 6
    Recipient: REDACTED
    Pk algo: ECDH

Public-Key Encrypted Session Key Packet, new CTB, 108 bytes
    Version: 6
    Recipient: REDACTED
    Pk algo: ECDH

Public-Key Encrypted Session Key Packet, new CTB, 108 bytes
    Version: 6
    Recipient: REDACTED
    Pk algo: ECDH
(...)

I've scanned the anonaddy code and it seems to me that it's using gpg to encrypt the messages, which is strange as it's not supposed to support RFC 9580 and packets version 6.

Is this an expected behavior? I have other recipients on addy.io that are encrypted according to RFC 4880, which is compatible with both Thunderbird and GPG:

sq packet dump
(...)
Public-Key Encrypted Session Key Packet, new CTB, 94 bytes
    Version: 3
    Recipient: REDACTED
    Pk algo: ECDH
(...)

Originally created by @codematle on GitHub (Feb 8, 2026). Original GitHub issue: https://github.com/anonaddy/anonaddy/issues/810 Hi, It seems that when I add a public PGP key the forwarded emails are encrypted (correctly) but with using RFC 9580 somehow. This prevents Thunderbird from decrypting the message, log: ``` :armored input :off 0: packet header 0xc16c (tag 1, len 108) :off 110: packet header 0xc16c (tag 1, len 108) :off 220: packet header 0xc16c (tag 1, len 108) :off 330: packet header 0xd2c896 (tag 18, len 2390) Symmetrically-encrypted integrity protected data packet ``` Interestingly, `gpg` cli also doesn't want to decrypt the message (grabbed from the raw email): ``` gpg --decrypt (...) gpg: packet(1) with unknown version 6 ``` Only sequoia was able to decrypt it (it shows that the message was correctly encrypted for the three decryption subkeys I have): ``` sq packet dump (...) Public-Key Encrypted Session Key Packet, new CTB, 108 bytes Version: 6 Recipient: REDACTED Pk algo: ECDH Public-Key Encrypted Session Key Packet, new CTB, 108 bytes Version: 6 Recipient: REDACTED Pk algo: ECDH Public-Key Encrypted Session Key Packet, new CTB, 108 bytes Version: 6 Recipient: REDACTED Pk algo: ECDH (...) ``` I've scanned the anonaddy code and it seems to me that it's using `gpg` to encrypt the messages, which is strange as it's not supposed to support RFC 9580 and packets version 6. Is this an expected behavior? I have other recipients on addy.io that are encrypted according to RFC 4880, which is compatible with both Thunderbird and GPG: ``` sq packet dump (...) Public-Key Encrypted Session Key Packet, new CTB, 94 bytes Version: 3 Recipient: REDACTED Pk algo: ECDH (...) ```

kerem closed this issue 2026-03-14 11:47:06 +03:00

kerem commented 2026-03-14 11:47:12 +03:00

Author

Owner

Copy link

@willbrowningme commented on GitHub (Feb 10, 2026):

Hmm, all of my encrypted emails are showing version 3.

Are you able to send me an email with the -----BEGIN PGP MESSAGE----- PGP encrypted message and details of the recipient that is happening for?

<!-- gh-comment-id:3877169457 --> @willbrowningme commented on GitHub (Feb 10, 2026): Hmm, all of my encrypted emails are showing version 3. Are you able to [send me an email](https://addy.io/contact/) with the `-----BEGIN PGP MESSAGE-----` PGP encrypted message and details of the recipient that is happening for?

kerem commented 2026-03-14 11:47:17 +03:00

Author

Owner

Copy link

@codematle commented on GitHub (Feb 10, 2026):

Thanks, I just sent you an email with all data titled "PGP version 6 encryption issue".

<!-- gh-comment-id:3877457213 --> @codematle commented on GitHub (Feb 10, 2026): Thanks, I just sent you an email with all data titled "PGP version 6 encryption issue".

kerem commented 2026-03-14 11:47:22 +03:00

Author

Owner

Copy link

@codematle commented on GitHub (Feb 11, 2026):

Ok, it turns out the key created by Sequoia had SEIPDv2 (“Symmetrically Encrypted Integrity Protected Data” version 2) feature in the Signature Packet. This advertises usage of v6 Public-Key Encrypted Session Key packets to the users according to RFC 9580.
I was able to regenerate the key using gpg - the key now has only SEIPDv1 feature and results in v3 packets when encoded by addy.

<!-- gh-comment-id:3885983866 --> @codematle commented on GitHub (Feb 11, 2026): Ok, it turns out the key created by Sequoia had `SEIPDv2` (“Symmetrically Encrypted Integrity Protected Data” version 2) feature in the Signature Packet. This advertises usage of v6 Public-Key Encrypted Session Key packets to the users according to RFC 9580. I was able to regenerate the key using `gpg` - the key now has only `SEIPDv1` feature and results in v3 packets when encoded by addy.

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

v1.5.0

v1.4.1

v1.4.0

v1.3.8

v1.3.7

v1.3.6

v1.3.5

v1.3.4

v1.3.3

v1.3.2

v1.3.1

v1.3.0

v1.2.3

v1.2.2

v1.2.1

v1.2.0

v1.1.0

v1.0.9

v1.0.8

v1.0.7

v1.0.6

v1.0.5

v1.0.4

v1.0.3

v1.0.2

v1.0.1

v1.0.0

v0.14.1

v0.14.0

v0.13.13

v0.13.12

v0.13.11

v0.13.10

v0.13.9

v0.13.8

v0.13.7

v0.13.6

v0.13.5

v0.13.4

v0.13.3

v0.13.2

v0.13.1

v0.13.0

v0.12.3

v0.12.2

v0.12.1

v0.12.0

v0.11.2

v0.11.1

v0.11.0

v0.10.1

v0.10.0

v0.9.1

v0.9.0

v0.8.10

v0.8.9

v0.8.8

v0.8.7

v0.8.6

v0.8.5

v0.8.4

v0.8.3

v0.8.2

v0.8.1

v0.8.0

v0.7.5

v0.7.4

v0.7.3

v0.7.2

v0.7.1

v0.7.0

v0.6.2

v0.6.1

v0.6.0

v0.5.0

v0.4.0

v0.3.0

v0.2.13

v0.2.12

v0.2.11

v0.2.10

v0.2.9

v0.2.8

v0.2.7

v0.2.6

v0.2.5

v0.2.4

v0.2.3

v0.2.2

v0.2.1

v0.2.0

v0.1.6

v0.1.5

v0.1.4

v0.1.3

v0.1.2

v0.1.1

v0.1.0

Labels

Clear labels   

bug

  

pull-request

Mirrored from GitHub Pull Request

No labels

bug

pull-request

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/anonaddy#1120

No description provided.