Re: [openpgp] Weird OIDs in the 4880bis draft

Daniel Kahn Gillmor <dkg@fifthhorseman.net> Fri, 24 February 2023 21:24 UTC

Return-Path: <dkg@fifthhorseman.net>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5EF0BC14CF1C for <openpgp@ietfa.amsl.com>; Fri, 24 Feb 2023 13:24:28 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.303
X-Spam-Level:
X-Spam-Status: No, score=-1.303 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, RDNS_NONE=0.793, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=neutral reason="invalid (unsupported algorithm ed25519-sha256)" header.d=fifthhorseman.net header.b="uw86BpFn"; dkim=pass (2048-bit key) header.d=fifthhorseman.net header.b="Bwsa9aZL"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cakkkYAYFXau for <openpgp@ietfa.amsl.com>; Fri, 24 Feb 2023 13:24:24 -0800 (PST)
Received: from che.mayfirst.org (unknown [162.247.75.117]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0FF16C14CEFA for <openpgp@ietf.org>; Fri, 24 Feb 2023 13:24:23 -0800 (PST)
DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/simple; d=fifthhorseman.net; i=@fifthhorseman.net; q=dns/txt; s=2019; t=1677273862; h=from : to : subject : in-reply-to : references : date : message-id : mime-version : content-type : from; bh=R6NIq2spl1AHm7O3zcbgbmP0Uh75wTTQFGsqdhwywMk=; b=uw86BpFn9RRlXugvlIKVopH4AtQP8qJiZ3hVIuD8kw9GQzu0OmRrYBFEGRmAbkvjgGKA6 WFc5uGnyIcQbQR6Dg==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=fifthhorseman.net; i=@fifthhorseman.net; q=dns/txt; s=2019rsa; t=1677273862; h=from : to : subject : in-reply-to : references : date : message-id : mime-version : content-type : from; bh=R6NIq2spl1AHm7O3zcbgbmP0Uh75wTTQFGsqdhwywMk=; b=Bwsa9aZLYfm2GE6pP0q2ZtowzYrU3qqtYgeHi7VUvlwJ5XkXkAaxgYIc6+HJLhezrhRAo InRU1nsg7UOyYZof1kw/xOdZiGF8Xaokb11KEufnApMnmLQjHdG0fyf1f/Xo3dLQwL9es+r WsCK4eJl1FEbzCEWgO/SiV0xAD70T8m/MaMKhtxFqmpkgj26Y36QJ/viwfMW7HrB71+3g+k VDYyOzdZuFXJBhuXvt3iY+ukoHUNzXLec4h4DdUccuirQTzikkTfSyt1b903uwJwtWrWpeW 1dXfuzgCagmOlFTIDCMvcM2x6ooZRhgTTCctHFB9Cx8C8S694w+FE9ftKZCQ==
Received: from fifthhorseman.net (lair.fifthhorseman.net [108.58.6.98]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) server-digest SHA384) (No client certificate requested) by che.mayfirst.org (Postfix) with ESMTPSA id 7E98BF9AD; Fri, 24 Feb 2023 16:24:22 -0500 (EST)
Received: by fifthhorseman.net (Postfix, from userid 1000) id E8B6C20578; Fri, 24 Feb 2023 16:24:18 -0500 (EST)
From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>, openpgp@ietf.org
In-Reply-To: <9f4ba5df-80bb-913e-056b-b2e72d2540fd@cs.tcd.ie>
References: <SY4PR01MB6251BD1B19BAD5DE910A1C0EEED99@SY4PR01MB6251.ausprd01.prod.outlook.com> <5bbca9f6-9fc5-3e8b-51eb-103637a6a4b5@cs.tcd.ie> <877cwg9n2y.fsf@europ.lan> <87sff4jfrp.fsf@fifthhorseman.net> <874jrk9eq9.fsf@europ.lan> <4123011c-ba72-e36f-c3c9-b1da3ed33d85@cs.tcd.ie> <uyfPffB5ZDa2AJavNntu4iKXNnG4m0TlhoaDcT5fAW9lh_QkhKaJiKNAL9kelDovGhUC_xcnTsdfQjPskuXL2Byy323mlgVsR8d8AWxXVz8=@protonmail.com> <cddeb76e-59f7-5abb-e980-5b7bd8c3a419@cs.tcd.ie> <9smwivJ9SgD6TyUrzBwAWZRror46JwRIG5AqFvvCssKV98Gxu3C0H731XgfRyTZwwh4tG0ZDehjXTXX7CpqK4Z9468j_C2mi0TM1QdJRXVA=@protonmail.com> <d0a872ba-d917-0c04-845b-5862a251b444@cs.tcd.ie> <850d0abb-03cd-0815-b3d3-6db2fe9d72da@my.amazin.horse> <9f4ba5df-80bb-913e-056b-b2e72d2540fd@cs.tcd.ie>
Autocrypt: addr=dkg@fifthhorseman.net; prefer-encrypt=mutual; keydata= mDMEX+i03xYJKwYBBAHaRw8BAQdACA4xvL/xI5dHedcnkfViyq84doe8zFRid9jW7CC9XBiI0QQf FgoAgwWCX+i03wWJBZ+mAAMLCQcJEOCS6zpcoQ26RxQAAAAAAB4AIHNhbHRAbm90YXRpb25zLnNl cXVvaWEtcGdwLm9yZ/tr8E9NA10HvcAVlSxnox6z62KXCInWjZaiBIlgX6O5AxUKCAKbAQIeARYh BMKfigwB81402BaqXOCS6zpcoQ26AADZHQD/Zx9nc3N2kj13AUsKMr/7zekBtgfSIGB3hRCU74Su G44A/34Yp6IAkndewLxb1WdRSokycnaCVyrk0nb4imeAYyoPtBc8ZGtnQGZpZnRoaG9yc2VtYW4u bmV0PojRBBMWCgCDBYJf6LTfBYkFn6YAAwsJBwkQ4JLrOlyhDbpHFAAAAAAAHgAgc2FsdEBub3Rh dGlvbnMuc2VxdW9pYS1wZ3Aub3JnL0Gwxvypz2tu1IPG+yu1zPjkiZwpscsitwrVvzN3bbADFQoI ApsBAh4BFiEEwp+KDAHzXjTYFqpc4JLrOlyhDboAAPkXAP0Z29z7jW+YzLzPTQML4EQLMbkHOfU4 +s+ki81Czt0WqgD/SJ8RyrqDCtEP8+E4ZSR01ysKqh+MUAsTaJlzZjehiQ24MwRf6LTfFgkrBgEE AdpHDwEBB0DkKHOW2kmqfAK461+acQ49gc2Z6VoXMChRqobGP0ubb4kBiAQYFgoBOgWCX+i03wWJ BZ+mAAkQ4JLrOlyhDbpHFAAAAAAAHgAgc2FsdEBub3RhdGlvbnMuc2VxdW9pYS1wZ3Aub3Jnfvo+ nHoxDwaLaJD8XZuXiaqBNZtIGXIypF1udBBRoc0CmwICHgG+oAQZFgoAbwWCX+i03wkQPp1xc3He VlxHFAAAAAAAHgAgc2FsdEBub3RhdGlvbnMuc2VxdW9pYS1wZ3Aub3JnaheiqE7Pfi3Atb3GGTw+ jFcBGOaobgzEJrhEuFpXREEWIQQttUkcnfDcj0MoY88+nXFzcd5WXAAAvrsBAIJ5sBg8Udocv25N stN/zWOiYpnjjvOjVMLH4fV3pWE1AP9T6hzHz7hRnAA8d01vqoxOlQ3O6cb/kFYAjqx3oMXSBhYh BMKfigwB81402BaqXOCS6zpcoQ26AADX7gD/b83VObe14xrNP8xcltRrBZF5OE1rQSPkMNy+eWpk eCwA/1hxiS8ZxL5/elNjXiWuHXEvUGnRoVj745Vl48sZPVYMuDgEX+i03xIKKwYBBAGXVQEFAQEH QIGex1WZbH6xhUBve5mblScGYU+Y8QJOomXH+rr5tMsMAwEICYjJBBgWCgB7BYJf6LTfBYkFn6YA CRDgkus6XKENukcUAAAAAAAeACBzYWx0QG5vdGF0aW9ucy5zZXF1b2lhLXBncC5vcmcEAx9vTD3b J0SXkhvcRcCr6uIDJwic3KFKxkH1m4QW0QKbDAIeARYhBMKfigwB81402BaqXOCS6zpcoQ26AAAX mwD8CWmukxwskU82RZLMk5fm1wCgMB5z8dA50KLw3rgsCykBAKg1w/Y7XpBS3SlXEegIg1K1e6dR fRxL7Z37WZXoH8AH
Date: Fri, 24 Feb 2023 16:24:18 -0500
Message-ID: <87y1omu58d.fsf@fifthhorseman.net>
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha256"; protocol="application/pgp-signature"
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/CP23wj-P4UUWnfLtcPB5ooD_9qI>
Subject: Re: [openpgp] Weird OIDs in the 4880bis draft
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 24 Feb 2023 21:24:28 -0000

On Fri 2023-02-24 19:22:04 +0000, Stephen Farrell wrote:

> It looks to me like we do seem to have consensus to
> include this late change.
>
> So if the people active on gitlab can get any remaining
> clean-up done to the MR and then let the editor know it's
> ready to merge, that'd be great.

I think it's already merged (though the test vectors for the sample v6
certificate, v6 secret key, and the hashed data of the cert's internal
v6 signatures will need to be replaced at some point).  Thanks, Paul!

Still outstanding to merge are three requests that we've reached group
consensus on in the interim and approvals and no objections on the list:

!238 - move SKESK and PKESK from v5 to v6 (includes updated SKESK test vectors)
!220 - use v6 signature trailer size from 8 to 4 octets (avoid hashdata alias with v3)
!219 - bind signature salt size to hash function

and two reference updates/simplifications (neither of which change
anything in terms of what's on the wire):

!216 - update SEC-1 reference
!205 - clarify CFB mode as used in OpenPGP

Beyond that, we have two outstanding questions for the group:

!233 - Forbid generation of ElGamal v5 (now v6) PKESK
!223 - remove session key checksum and padding for v6 ECDH

I'll start a separate thread on both of these.

Once these are resolved, i think we should roll out a new version.

If anyone can offer cleanup of the sample v6 secret key, certificate,
and hashed signature data before the new verson lands, that would be
great!  Note that !219 and !220 will both affect all three samples.

     --dkg