IETF Logo Mail Archive

Re: [openpgp] Marker packet for OpenPGP-NG (was: Confirming open questions discussed at IETF 114)

Paul Wouters <paul@nohats.ca> Wed, 12 October 2022 15:42 UTC

Return-Path: <paul@nohats.ca>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AB70DC152703 for <openpgp@ietfa.amsl.com>; Wed, 12 Oct 2022 08:42:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.106
X-Spam-Level:
X-Spam-Status: No, score=-7.106 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nohats.ca
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OKCW2gEAVfSM for <openpgp@ietfa.amsl.com>; Wed, 12 Oct 2022 08:42:31 -0700 (PDT)
Received: from mx.nohats.ca (mx.nohats.ca [IPv6:2a03:6000:1004:1::85]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BE025C1527A0 for <openpgp@ietf.org>; Wed, 12 Oct 2022 08:42:31 -0700 (PDT)
Received: from localhost (localhost [IPv6:::1]) by mx.nohats.ca (Postfix) with ESMTP id 4MncNN3PJ5zCDN; Wed, 12 Oct 2022 17:42:28 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nohats.ca; s=default; t=1665589348; bh=bmIhC/1b6kk4l2xRdfxphWPm38lvCunhBvkzeu9ah8g=; h=Date:From:To:cc:Subject:In-Reply-To:References; b=ROB7ECb8/nDpoEd+7t8zE34LLQlHkiEwd/L0jk5lmubU9Q02s0VUO3cHn1BHIkzl1 Q0Gnp9HnI0NCCvoKSW+RU6bMB+SqR6QaUMDTq9UDMmNpchVGN9d+OPXuVSez+GUPhg 5ejnR7zWcm2wcJjEOEslXzdhc6JCC0N9QhjPcLAg=
X-Virus-Scanned: amavisd-new at mx.nohats.ca
Received: from mx.nohats.ca ([IPv6:::1]) by localhost (mx.nohats.ca [IPv6:::1]) (amavisd-new, port 10024) with ESMTP id kZYH-y-xKN4x; Wed, 12 Oct 2022 17:42:27 +0200 (CEST)
Received: from bofh.nohats.ca (bofh.nohats.ca [193.110.157.194]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx.nohats.ca (Postfix) with ESMTPS; Wed, 12 Oct 2022 17:42:27 +0200 (CEST)
Received: by bofh.nohats.ca (Postfix, from userid 1000) id 5A82D3F1E90; Wed, 12 Oct 2022 11:42:26 -0400 (EDT)
Received: from localhost (localhost [127.0.0.1]) by bofh.nohats.ca (Postfix) with ESMTP id 57C7E3F1E8F; Wed, 12 Oct 2022 11:42:26 -0400 (EDT)
Date: Wed, 12 Oct 2022 11:42:26 -0400
From: Paul Wouters <paul@nohats.ca>
To: Werner Koch <wk@gnupg.org>
cc: openpgp@ietf.org
In-Reply-To: <87sfjtdr3b.fsf_-_@wheatstone.g10code.de>
Message-ID: <cd32f66-7d5c-f1ad-cb27-50be1f391ab@nohats.ca>
References: <87tu6wneqh.fsf@fifthhorseman.net> <87y1tm635e.fsf@fifthhorseman.net> <bc30b65f-3dc7-fa1a-e3a9-9b7171192d92@cs.tcd.ie> <87sfjtdr3b.fsf_-_@wheatstone.g10code.de>
MIME-Version: 1.0
Content-Type: text/plain; format="flowed"; charset="US-ASCII"
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/_urtADcnYyYSkXLGCLYQJ1iRJ5c>
Subject: Re: [openpgp] Marker packet for OpenPGP-NG (was: Confirming open questions discussed at IETF 114)
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 12 Oct 2022 15:42:36 -0000

On Wed, 12 Oct 2022, Werner Koch wrote:

> Given that the crypto-refresh I-D heavily deviates from OpenPGP as
> specified in RFC-2440 and RFC-4880 and deployed practise I have two
> suggestions to avoid confusion:

I am confused what confusion there would be? See dkg's reply to Kai
a few days ago. The versions for keys and packets are clear and
unambiguous.

If you want to implement something different from OpenPGP, all the
IANA registries at https://www.iana.org/assignments/pgp-parameters/pgp-parameters.xhtml
have options for Private Use values that can be used for such a
purpose.

> 1. All data including key packets shall make use of a marker packet
>
>   5.8.  Marker Packet (Tag 10)
>
>   This packet was used by certain PGP versions and flagged as obsolete
>   in RFC-4880.  With this specification it is repurposed to mark the
>   data and keys constructed as specified by this specification and its
>   successors.

I would not be in favour of this, as its main use seems to be for supporting
forks of the IETF OpenPGP specification.

> 2. Clearly identify the new specification as a new version of OpenPGP
>   with only limited backward compatibility.  For example
>     OpenPGP-NG or OpenPGP/2 or ModernPGP or IETFPGP
>   or maybe just PGP (if Broadcom allows for such a use)

I do not believe this is neccessary. Again, see dkg's reply to Kai's
email a few days ago.

If gnupg has deployed versions of somrthing incompatible with OpenPGP as
per 4880, and has done so by using unassigned values from the above IANA
registries, please let us know so that crypto-refresh can skip those
numbers and mark those numbers in the IANA registry as RESERVED. In that
case, it would be recommended that your implementation starts migrating
to Private Use numbers within those IANA registries.

Paul

v2.23.0 | Report a Bug | By Email