Hi Victor, thank you for your bugreport.
On 07/01/2017 02:59 AM, Victor Wagner wrote: > Package: keepassx > Version: 2.0.3-1 > Severity: important > > > > After dist-upgrade of debian jessie to debian stretch, I've found out > that keepassx is unable to open my password database. It suggests to > import it from older format, and warns that this action is irreversible. > > But keepass is cross-platform. Its main advantage over other password > managers it allows me to > copy password database around between different devices - computers, > smartphones, tablets. Just copy as a file, directly, using bluetooth, > LAN or USB-cable, without use of some > third-party network service (which should be considered insecure). > > So I have to upgrade all my devices simultaneously if I want to switch > from one keepass 1.x to keepass 2.x database format. > > It is not a decision which could be done automatically for user by > dist-upgade your analysis is correct and your concern is valid. Unfortunately, I don't think we are able to address this in a way that you suggest. The old keepassx 1 codebase is no longer maintained, and Debian as a project unfortunately does not have the time and resources to maintain it independently of upstream. Therefore, re-introducing the old keepassx 0.x version is not an option. However, Felix maintains also acts as upstream maintainer and I have copied him on this email. Felix, I think it is a reasonable concern from Victor that having to upgrade all devices at the same time is unfortunate. Would it possible to add support for reading and writing of keepassx 0.x .kdb files to the 2.x branch of keepassx? If so, we can repurpose this bug to track progress on that feature. If not, I'd tag it as wontifx. Reinhard
