IETF Logo Mail Archive

[openpgp] Re: I-D Action: draft-ietf-openpgp-replacementkey-02.txt

Andrew Gallagher <andrewg@andrewg.com> Thu, 12 December 2024 10:41 UTC

Return-Path: <andrewg@andrewg.com>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 00A49C151556 for <openpgp@ietfa.amsl.com>; Thu, 12 Dec 2024 02:41:10 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.105
X-Spam-Level:
X-Spam-Status: No, score=-2.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=andrewg.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hXjXP20hkCQo for <openpgp@ietfa.amsl.com>; Thu, 12 Dec 2024 02:41:05 -0800 (PST)
Received: from fum.andrewg.com (fum.andrewg.com [IPv6:2a01:4f9:c011:23ad::1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9393EC169418 for <openpgp@ietf.org>; Thu, 12 Dec 2024 02:41:04 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=andrewg.com; s=andrewg-com; t=1734000061; bh=yJZl8LF1/vz/ioOqlNUIooX64owahtMS38nul7XPorE=; h=From:Subject:Date:In-Reply-To:Cc:To:References:From; b=V5mi7/a2IePxCs7/jvmFhQv90oXnOS06Kff/J7V/mYVf+6SJXQt0PXJUqfZ5xGYoq jeAiQNSwX5JgPb2m8rtDC+rv7pnKVhqxUNO+gai5OVryAXZ7QVCIHN97E5CTcoMLxT pMF1kp9stCSwbZDwwQpiOeP+Ldb3ASlXvdmxD2Tqp7dU0EFWWILsKpha7hYUC7H1Fa lneOsLH9mT4VBeXi/mBIHtI2CWPytI0TB/gzjLJK5EOugZrouWpHQNCNP/Da+yna/1 6wRKAGWwuArNfHf1oazbYCKE3ttG6WFMHNRmyiOxq3MmyA9CciOQqcz8+2iCNFLGB+ 7vNAiiWA591zw==
Received: from smtpclient.apple (serenity [IPv6:fc93:5820:7349:eda2:99a7::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by fum.andrewg.com (Postfix) with ESMTPSA id 4EF865DCA4; Thu, 12 Dec 2024 10:41:01 +0000 (UTC)
From: Andrew Gallagher <andrewg@andrewg.com>
Message-Id: <EEED1E4F-973E-4424-88F0-5D81BD6F997F@andrewg.com>
Content-Type: multipart/signed; boundary="Apple-Mail=_91FB3DFD-C70A-4FF6-8047-3DEB44B3A50E"; protocol="application/pgp-signature"; micalg="pgp-sha512"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3731.700.6.1.9\))
Date: Thu, 12 Dec 2024 10:40:22 +0000
In-Reply-To: <cb1627a3-1257-4177-9917-9ea7d73652b1@mtg.de>
To: Johannes Roth <johannes.roth@mtg.de>
References: <173264571597.581885.1047714570419252899@dt-datatracker-5679c9c6d-qbvvv> <14B07CCC-BD69-4302-9E1C-96B853942C5F@andrewg.com> <cb1627a3-1257-4177-9917-9ea7d73652b1@mtg.de>
X-Mailer: Apple Mail (2.3731.700.6.1.9)
Message-ID-Hash: Z3QM2SSQ23SEWFX5KLFKOAVCQR4VKM3J
X-Message-ID-Hash: Z3QM2SSQ23SEWFX5KLFKOAVCQR4VKM3J
X-MailFrom: andrewg@andrewg.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-openpgp.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: IETF OpenPGP WG <openpgp@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [openpgp] Re: I-D Action: draft-ietf-openpgp-replacementkey-02.txt
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/VuqhwzvsAvEHN8GT5ZkVbskda14>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Owner: <mailto:openpgp-owner@ietf.org>
List-Post: <mailto:openpgp@ietf.org>
List-Subscribe: <mailto:openpgp-join@ietf.org>
List-Unsubscribe: <mailto:openpgp-leave@ietf.org>

Hi, Johannes.

On 12 Dec 2024, at 10:27, Johannes Roth <johannes.roth@mtg.de> wrote:

> I also have quick question: Are chains for forward replacements supposed to be allowed, e.g. A claims to be replaced by B and B claims to be replaced by C? From what I read in the draft it should be allowed. In that case I'll have some feedback. If no chains are allowed, I'll have less feedback.

If a valid equivalence binding exists (i.e. two certs A and B, where A indicates that B is its replacement and B indicates that A is its original/fallback), it is not possible to create a chain. This is because only one live subpacket can be present in each self-signature, and that subpacket is either a forwards or an inverse subpacket. While it is possible for an inverse subpacket to refer to multiple originals, it is not possible to mix forwards and inverse references in the same self-signature.

If however there are no inverse subpackets, then it is possible to create a chain of references - e.g. cert A may have a forward reference to cert B and cert B may have a forwards reference to cert C (instead of an inverse reference to A). We did not explicitly prohibit this since such a construction is merely advisory, however it may be prudent to implement a limit on how many such references should be followed.

A

v2.35.0 | Report a Bug | By Email | System Status