[openpgp] Re: Fwd: I-D list for Open Specification for Pretty Good Privacy notification: Changes to draft-gallagher-openpgp-code-point-exhaustion
Justus Winter <justus@sequoia-pgp.org> Thu, 20 March 2025 12:21 UTC
Return-Path: <justus@sequoia-pgp.org>
X-Original-To: openpgp@mail2.ietf.org
Delivered-To: openpgp@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 5E059F9F962 for <openpgp@mail2.ietf.org>; Thu, 20 Mar 2025 05:21:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (4096-bit key) header.d=sequoia-pgp.org
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Mz6u13euOrDa for <openpgp@mail2.ietf.org>; Thu, 20 Mar 2025 05:21:39 -0700 (PDT)
Received: from mailgate02.uberspace.is (mailgate02.uberspace.is [185.26.156.114]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 8B48EF9F95A for <openpgp@ietf.org>; Thu, 20 Mar 2025 05:21:39 -0700 (PDT)
Received: from harrington.uberspace.de (harrington.uberspace.de [185.26.156.85]) by mailgate02.uberspace.is (Postfix) with ESMTPS id B76871814C1 for <openpgp@ietf.org>; Thu, 20 Mar 2025 13:21:37 +0100 (CET)
Received: (qmail 29889 invoked by uid 500); 20 Mar 2025 12:21:37 -0000
Authentication-Results: harrington.uberspace.de; auth=pass (plain)
Received: from unknown (HELO unkown) (::1) by harrington.uberspace.de (Haraka/3.0.1) with ESMTPSA; Thu, 20 Mar 2025 13:21:37 +0100
From: Justus Winter <justus@sequoia-pgp.org>
To: Heiko Schäfer <heiko.schaefer@posteo.de>, openpgp@ietf.org
In-Reply-To: <dc644134-e5f2-4c4a-9f31-6b1f087da4c9@posteo.de>
References: <174231559348.277.2581535826712330509@dt-celery-57d64c6895-fcmg2> <B321DC63-56E0-44C2-96AA-D60205C148B2@andrewg.com> <64a412e9-0062-486e-b70f-c7ede14cf4b2@posteo.de> <875xk481nn.fsf@europ.lan> <dc644134-e5f2-4c4a-9f31-6b1f087da4c9@posteo.de>
Date: Thu, 20 Mar 2025 13:21:36 +0100
Message-ID: <87wmcj7uzz.fsf@europ.lan>
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha512"; protocol="application/pgp-signature"
X-Rspamd-Bar: ---
X-Rspamd-Report: BAYES_HAM(-1.365089) SIGNED_PGP(-2) MIME_GOOD(-0.2)
X-Rspamd-Score: -3.565089
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=sequoia-pgp.org; s=uberspace; h=from:to:subject:date; bh=1LMPfADRoQCs0boA6/o4rH12CdO/Jm/IHo7YY3Hre2g=; b=bqbHupGcG8CTP/P0VeDYcHUDqRkIRdcRMzCT5aDtC56Op7n77Do65h3XLsEj4f6W+XU/IoOp5Y B3GTFIIcv1ZPLotarQ696kCJmCdpmfIlAy+ByF4dbEf87MafiGP0kKkamDFwTi0m2pffNWlO0Xwx YeREzWeLbBjaK+TPUvtjAkuo88CcsaoVZUm9LZE6b964fjD9pVGg3uovXydFQwUnk51lKq5siXkD vkfa0bvpgLAFPQeu5yyUVGAj4EU8Xtutqjud2Es2rvBJzh4n3F/nHSntuA8I+JnwBwXUBlZ53ClA F4OlyzXozWpmjuZDMBeAASagteC0N1Gi8qSYhNr64KPH/1SpWu7YsBXCXb6W0mnx6NXJKFQIvhNg z/oO3Sg7Er29rPe4CNJRp9W4H1oYLxK1F2zJqz78d8JNL8cTTT2mDR1kp27BvVJlNdsiSqWdz5Gz axs4mGktNqAgUHaSJa/oyUiBiZvLhBw5Idz4C6DRfkXmklN2Z7LHe86Y6mg1sPItgK0XwDI2UYLJ 4PYsAimihoDuJekPsLYuJk1IifanB2wB/eI7bjjrNSpt2J0u11gLoKXHb32fbUUb3gdcEWnzRurX ksCkIWvhviIu307S57rYR2bxBALjsfVnYfB5RnMfoIOpHq0IyRNXZlcfMV3Aktf0+OEuGtsEpmBj c=
Message-ID-Hash: 2355KPGL7KRG7UTJI2YYBTEACJCU43LE
X-Message-ID-Hash: 2355KPGL7KRG7UTJI2YYBTEACJCU43LE
X-MailFrom: justus@sequoia-pgp.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-openpgp.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [openpgp] Re: Fwd: I-D list for Open Specification for Pretty Good Privacy notification: Changes to draft-gallagher-openpgp-code-point-exhaustion
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/YW8KQ15LSGF20bwvtowos1w0Sp4>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Owner: <mailto:openpgp-owner@ietf.org>
List-Post: <mailto:openpgp@ietf.org>
List-Subscribe: <mailto:openpgp-join@ietf.org>
List-Unsubscribe: <mailto:openpgp-leave@ietf.org>
Hi Heiko :) Heiko Schäfer <heiko.schaefer@posteo.de> writes: > Hello Justus, list, > > On 3/20/25 10:57 AM, Justus Winter wrote: >> Further, the proposed solution (for which reserving one bit now is the >> precondition, so I think it is fair to also consider it), seems to >> complicate parsing (and there is precedence on how OpenPGP very cleverly >> encodes things like packet body lengths, S2K hash counts, S2K mechanism >> type, AEAD block sizes), and I like parsing to become simpler, not more >> complicated. > > I tried to be clear, but will try to be even clearer: > > I didn't mean to say that I'm in favor of ratifying the specifics of > the proposal. I *am*, however, in favor of *just* reserving code > points >= 128 (where applicable), until further notice. Thanks for clarifying. > Reserving a range of code points, by itself, certainly wouldn't > complicate any parsing. It would only clarify a policy for how the WG > assigns code points, over the next few cycles of extensions. That is true. > Reserving the upper halves *for now* wouldn't in any way stop the WG > from deciding (say, 5 years from now) that it is, after all, the > lesser evil to just assign code points >=128 in one-byte > representation. That is true, but this precaution also has a non-trivial cost (Andrews time, our time, IETF machinery time), for a problem that not everyone agree exists (in fact, a relatively recent discussion in this working group concluded that it doesn't), and the precaution is necessary only to pave the way for a solution no one except Andrew seems to like (at least no one spoke up yet, if you do, please speak up!). > (Fwiw, I currently lean towards agreeing with you - I expect to favor > avoiding the complexity of Andrew's proposal, myself. But maybe in 5 > years my view will have changed. I expect we will collectively gain > new insights about the appropriate future evolution of the format, as > OpenPGP hopefully flourishes.) Thanks for carefully clarifying your opinion on the proposed solution as well. Best, Justus
- [openpgp] Fwd: I-D list for Open Specification fo… Andrew Gallagher
- [openpgp] Re: Fwd: I-D list for Open Specificatio… Daniel Huigens
- [openpgp] Re: I-D list for Open Specification for… Andrew Gallagher
- [openpgp] Re: Fwd: I-D list for Open Specificatio… Justus Winter
- [openpgp] Re: I-D list for Open Specification for… Andrew Gallagher
- [openpgp] Re: I-D list for Open Specification for… Justus Winter
- [openpgp] Re: I-D list for Open Specification for… Andrew Gallagher
- [openpgp] Re: Fwd: I-D list for Open Specificatio… Heiko Schäfer
- [openpgp] Re: Fwd: I-D list for Open Specificatio… Justus Winter
- [openpgp] Re: Fwd: I-D list for Open Specificatio… Heiko Schäfer
- [openpgp] Re: Fwd: I-D list for Open Specificatio… Justus Winter
- [openpgp] Re: Fwd: I-D list for Open Specificatio… Daniel Huigens
- [openpgp] Re: I-D list for Open Specification for… Andrew Gallagher
- [openpgp] Re: I-D list for Open Specification for… Daniel Huigens