Encrypted data on an untrusted Linux device can be accessed by another instance of syncthing with the known password connecting to the encrypted folder. In this case, as expected, the original timestamps are applied to the decrypted and synced files.
Or by accessing the encrypted data and using the command syncthing decrypt --to /path/to/decrypted/files/ --password xxxx /path/to/encrypted/folder/ In this case the timestamps are applied as the current time of the OS used to decrypt the folder.
Question: is there anyway the second method can access the original timestamps for each file?
You can just download the binary built by CI from the pull request for testing. It’s a bit hard to find the files (called artifacts) but somewhere under Checks there should be appropriate binaries I believe.