[openpgp] Re: Small correction for draft-ietf-openpgp-pqc
Johannes Roth <johannes.roth@mtg.de> Tue, 27 January 2026 15:02 UTC
Return-Path: <johannes.roth@mtg.de>
X-Original-To: openpgp@mail2.ietf.org
Delivered-To: openpgp@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id A3E67ADBF531 for <openpgp@mail2.ietf.org>; Tue, 27 Jan 2026 07:02:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=mtg.de
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pbzWVRCctRkP for <openpgp@mail2.ietf.org>; Tue, 27 Jan 2026 07:01:59 -0800 (PST)
Received: from www.mtg.de (www.mtg.de [IPv6:2a02:b98:8:2::2]) (using TLSv1.3 with cipher TLS_CHACHA20_POLY1305_SHA256 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id BEA65ADBF529 for <openpgp@ietf.org>; Tue, 27 Jan 2026 07:01:59 -0800 (PST)
Received: from minka.mtg.de (minka [IPv6:2a02:b98:8:1:0:0:0:9]) by www.mtg.de (8.18.1/8.18.1) with ESMTPS id 60RF1p05004123 (version=TLSv1.3 cipher=TLS_CHACHA20_POLY1305_SHA256 bits=256 verify=NOT) for <openpgp@ietf.org>; Tue, 27 Jan 2026 16:01:51 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=mtg.de; s=mail201801; t=1769526111; bh=C7uyIFqkEstC8gpih8mhioCCpg0anTOAvvl19nhfc8c=; h=Date:Subject:To:References:From:In-Reply-To; b=TkgHajrDfH/FY16GOFw5iMTJr2GxbVz1TQb4XMX4F0JL0SNQNNj9sai2lIhhs8SJ8 K9dWMlZ7K+UdKXz65606f7w2H0YY8AJsPBbW/MIs2NaXmD/0Tb8lmAO2rA6W2Gc6Mg y+Z4YkTigighWQAaZr9yN1VGKmkuYneo/9/ZDyujEYNq7r2xaQKNWZlRbIzo+r7hES YlxDAu6KAmBpB7c3CxBVuorGFSvgIoXSx5WOYB4QJN3NfacSnCGgnQn3EBbb6/oKz5 KwPvirxKRyQTwkwVi1w3rKMROgH+ZFkN/JsOEQdTZSvg2LKuN0U/EQ4Ut5EQbhe+4Q rHqX2ncsqT1oA==
Received: from [199.99.99.52] (abahachi [199.99.99.52]) by minka.mtg.de (8.18.1/8.18.1) with ESMTPS id 60RF1p8n019207 (version=TLSv1.3 cipher=TLS_CHACHA20_POLY1305_SHA256 bits=256 verify=NOT) for <openpgp@ietf.org>; Tue, 27 Jan 2026 16:01:51 +0100
Message-ID: <60fa82b0-b043-4763-a0c0-90620764aea1@mtg.de>
Date: Tue, 27 Jan 2026 16:01:57 +0100
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
To: openpgp@ietf.org
References: <KkQYkRhj-jf9WzOzUPCANDTYaYYGgWDJY27bnZl2GOe19_mgrFIO9-TmYwX_kYVE3KDP7OagceEdDhVgRBYG55fbsKmFGFKDIhhjm9QNGYg=@protonmail.com> <87wm14msr7.fsf@fifthhorseman.net>
From: Johannes Roth <johannes.roth@mtg.de>
Organization: MTG AG
In-Reply-To: <87wm14msr7.fsf@fifthhorseman.net>
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha-512"; boundary="------------ms000808060501070703050804"
Message-ID-Hash: LQMJJA2WGH6CVHGP4OSD2ZMQXXPMG7X3
X-Message-ID-Hash: LQMJJA2WGH6CVHGP4OSD2ZMQXXPMG7X3
X-MailFrom: johannes.roth@mtg.de
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-openpgp.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [openpgp] Re: Small correction for draft-ietf-openpgp-pqc
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/TEtE1nY16Cdse4a_wmkHbdWstMo>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Owner: <mailto:openpgp-owner@ietf.org>
List-Post: <mailto:openpgp@ietf.org>
List-Subscribe: <mailto:openpgp-join@ietf.org>
List-Unsubscribe: <mailto:openpgp-leave@ietf.org>
Hi all, I have created a PR [1] to fix the description in the PQC draft and we will release a new version soon. Thanks for catching the error! Best, Johannes [1] https://github.com/openpgp-pqc/draft-openpgp-pqc/pull/266 On 26.01.2026 14:02, Daniel Kahn Gillmor wrote: > On Mon 2026-01-26 09:54:05 +0000, Daniel Huigens wrote: >> Apologies for the last minute (last second?) comment, but there's a >> small error in Section 4.3.1 of draft-ietf-openpgp-pqc, which states: >> >>> Note that like in the case of the algorithms X25519 and X448 specified >>> in [RFC9580], for the ML-KEM composite schemes, in the case of a v3 >>> PKESK packet, the symmetric algorithm identifier is not encrypted. >>> Instead, it is placed in plaintext after the mlkemCipherText and >>> before the length octet preceding the wrapped session key. >> >> However, according to the preceding list and the test vectors, and more >> in line with X25519 and X448, the symmetric algorithm ID is placed >> _after_ the length octet (and included in that length). >> >> The proposed additions to the IANA registry also place the octet >> correctly, which actually is _not_ true for RFC9580, which failed to >> include it in the table (mea culpa for that one, I'll file an erratum). > > Thanks for catching this! Please propose concrete text to be > incorporated during the RFC Editor's phase, and file that erratum. > We'll get it sorted. > > --dkg > > > _______________________________________________ > openpgp mailing list -- openpgp@ietf.org > To unsubscribe send an email to openpgp-leave@ietf.org
- [openpgp] Small correction for draft-ietf-openpgp… Daniel Huigens
- [openpgp] Re: Small correction for draft-ietf-ope… Daniel Kahn Gillmor
- [openpgp] Re: Small correction for draft-ietf-ope… Johannes Roth
- [openpgp] Re: Small correction for draft-ietf-ope… Paul Wouters
- [openpgp] Re: Small correction for draft-ietf-ope… Aron Wussler