Conversation

Jarkko Sakkinen

BTW how is PQC in linux-crypto? I recall it had similar ripples as GPG had (last time I checked) but nothing reasonable. Just interested/query.

For OpenSSL, v3.5 was the milestone release i.e., it is in some sense done.

#linux #crypto #openssl
2
0
0
@neal, Hey, I see your name appearing in Google search hits; do you know anything to do with this ? :-)
0
0
0

@jarkko TLS in OpenSSL, GnuTLS, NSS are done, Go has key exchange shipped, signatures following soon.

OpenPGP just dropped a new RFC and @sequoiapgp has a branch. GnuPG will do something incompatible, so switching to a better implementation is probably in order.

Kernel either has a verification of ML-DSA signatures pending or already merged.

Beyond that, not much. Oracle promised something in Java second half of this year.

3
0
2

@jarkko for CAs for TLS, it seems Merkle Tree Certificates will be the way to go, but nobody has support for those yet and the standard isn't done.

0
0
1

@jarkko oh, and SSH also has key exchange already, both in OpenSSH and libssh. Signatures are currently being discussed in the IETF SSH WG.

0
0
1
@neverpanic @sequoiapgp Thank you for the update (s)!

I had issues on using Sequoia for kernel work but the specifics have been erased from my memory.

I would not mind to scraping GPG, and switching to Sequoia. After 17-20 years of proactive use or something like that, I still get lost in the configuration and forget what I was supposed to be doing πŸ˜…

GPG is also an over the top complex stack (gpg, pcscd, systemd services, gpgconf. ...). So yeah, it's bad 100% agree on that part :-) I don't have anything else good to say about GPG except compatibility...
1
0
0
@neverpanic @sequoiapgp Managing keys is complicated enough in GPG making it one of the unattractive tasks to accomplish with a computer.
1
0
0
@neverpanic @sequoiapgp I'm not sure if anyone in the kernel community likes GPG TBH. It's more like a curse I guess.

@vbabka fancy for GPG ? :-)
1
0
2

Vlastimil Babka πŸ‡¨πŸ‡ΏπŸ‡ͺπŸ‡ΊπŸ‡ΊπŸ‡¦

@jarkko @neverpanic @sequoiapgp yeah can we instead of/in addition to PQC have a post-GPG cryptography?

1
0
1
@vbabka @neverpanic @sequoiapgp I'll install sequoia and try to gather a list what works and what does not for some basic tasks that often come up to get some idea...
1
0
1

@jarkko @sequoiapgp @vbabka There's still room for improvement, but given that we're looking for an alternative to put into RHEL 11, we're planning to take a swing at it over the next year or two.

1
0
0
@neverpanic @sequoiapgp @vbabka

So... not yet any actual effort done to verify but I'd figure that if sq fails somwhere it would be the defacto key topology most kernel maintainers use:

1. Public keys are at ~/.gnupg
2. The root key is offline
3. Private subkeys reside only inside the smartcard.

For most probably if sq scales to handle this type of topology with no gotchas and compromises. If not, sq is unsable for kernel development.

That is like THE edge case.
2
0
1
@neverpanic @sequoiapgp @vbabka just for completeness and zero out confusion: we are not looking forward to retain ~/.gnupg as storage for PKs; their storage can be changed np with that. Just stating the obvious....
0
0
1

@jarkko @sequoiapgp @vbabka No idea about offline root keys, maybe @nwalfield knows. Smartcard support exists but needs some more polishing.

1
0
0
@neverpanic @sequoiapgp @vbabka @nwalfield

GPG semantics with any possible private blob is "try to use a private key"; i.e. not "use a private key".

And unlike I said earlier, this is universal for any private blob accress the key hierarchy.

Public blobs are never offline i.e. key hierachy is *always* available without sentinel data essentially.
1
0
1

Jarkko Sakkinen

Edited yesterday
Being robust on dealing with private blobs is one of the most essential features of any possible tool in this category. GPG is horrible but it delivers this, i.e. it meets, and I hate to say this, 2026 standards in that way. If Sequoia does not, it is a modern interface without all the essential features.

If there is a huge delta, I'd rather roadmap this for the long-term. We don't have rush in kernel, I'd scrape GPG any day when the locking is gone.
1
0
0
On bright side, I'd rather wait for few years even, so that sq catches up rather than use a tool that slops its way through faster. Sequoia is still a "trustworthy" community, which matters so much more than just plain source code. So keep calm, and fix the bottlenecks :-)

Enterrprise distro schedule does not really connect either when it is about kernel dev because they are our "target device" not the "development platform". I'm just wondering a bit why RHEL schedule is that important in this discussion.

One more thing.

If you design this feature make it provider agnostic. It should be easily backed by smartcards, TPM2 chips, possibly even TEEs or enclaves (SGX.TDX, SNP etc.). I.e. how now private blob is read should really be one of t he adapters in this framework.
1
0
0
I think I'll check what GPG actually stores before making more noise :-) Some details are not exactly correct but I'll do the homework first and compare to sq.
1
0
0

@jarkko Yeah, OpenPGP is so popular among users that this kind of divide is exactly what we need to further fragment PQC. #OpenPGP #PQC #GnuPG #Sequoia

1
0
0
@sl I think it is good to do some research I have not properly looked under to hood. I don't have opinions or want/don't anything right now because I have blanks to fill.
1
0
0
@sl With sq it would be probably better have a roadmap than aggressively push anyone. I have a hunch is that adapting to kernel dev is a stretch, if it happens at all. So... it's drawing board time.
1
0
0
@sl I found that funny because I was thinking today that "sq might be a fun hobby for me for the next couple or so years" :-) Great way to learn also of gpg internals. I like digging out stuff like that... for the sake of it.
1
0
1
@sl and if i got something useful done i'd be like jack of all keys ;-)
1
0
0
@sl As of today something that is long, difficult and takes time is more like privilege than pain anyhow.
0
0
1