From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gentoo-dev+bounces-84983-garchives=archives.gentoo.org@lists.gentoo.org>
Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by finch.gentoo.org (Postfix) with ESMTPS id C99C9138334
	for <garchives@archives.gentoo.org>; Wed,  4 Jul 2018 09:09:33 +0000 (UTC)
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id EC383E09A8;
	Wed,  4 Jul 2018 09:09:26 +0000 (UTC)
Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by pigeon.gentoo.org (Postfix) with ESMTPS id 88E0EE0986
	for <gentoo-dev@lists.gentoo.org>; Wed,  4 Jul 2018 09:09:25 +0000 (UTC)
Received: from pomiot (d202-252.icpnet.pl [109.173.202.252])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	(Authenticated sender: mgorny)
	by smtp.gentoo.org (Postfix) with ESMTPSA id C64D4335C7F;
	Wed,  4 Jul 2018 09:09:23 +0000 (UTC)
Message-ID: <1530695359.914.34.camel@gentoo.org>
Subject: Re: [gentoo-dev] [PATCH 5/4] glep-0063: Allow ECC keys
From: =?UTF-8?Q?Micha=C5=82_G=C3=B3rny?= <mgorny@gentoo.org>
To: gentoo-dev@lists.gentoo.org
Cc: robbat2@gentoo.org
Date: Wed, 04 Jul 2018 11:09:19 +0200
In-Reply-To: <4a600c09-312f-dd03-d206-d0b4b8d63770@gentoo.org>
References: <20180703132957.29200-1-mgorny@gentoo.org>
	 <20180704072254.3643-1-mgorny@gentoo.org>
	 <751a88c0-e367-4394-825e-baba66c95fb6@gentoo.org>
	 <1530690857.914.18.camel@gentoo.org>
	 <f3eb436e-98f9-682e-f6e4-756501734fc5@gentoo.org>
	 <1530693762.914.30.camel@gentoo.org>
	 <4a600c09-312f-dd03-d206-d0b4b8d63770@gentoo.org>
Organization: Gentoo
Content-Type: multipart/signed; micalg="pgp-sha512";
	protocol="application/pgp-signature"; boundary="=-r5NpkN4xGb7cWavwBL2h"
X-Mailer: Evolution 3.24.6 
Precedence: bulk
List-Post: <mailto:gentoo-dev@lists.gentoo.org>
List-Help: <mailto:gentoo-dev+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-dev+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-dev+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-dev.gentoo.org>
X-BeenThere: gentoo-dev@lists.gentoo.org
Reply-to: gentoo-dev@lists.gentoo.org
Mime-Version: 1.0
X-Archives-Salt: 5da1dd75-6282-4e03-9477-bcc806f7000b
X-Archives-Hash: a3e39be3f5574a516c2e8470012fe41d


--=-r5NpkN4xGb7cWavwBL2h
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

W dniu =C5=9Bro, 04.07.2018 o godzinie 10=E2=88=B651=E2=80=89+0200, u=C5=BC=
ytkownik Kristian
Fiskerstrand napisa=C5=82:
> On 07/04/2018 10:42 AM, Micha=C5=82 G=C3=B3rny wrote:
> > 1. I suppose the ECC/cv25519 packets won't change in incompatible manne=
r
> > at this point.
>=20
> It being implemented in gnupg-2-2 is a good indication it won't be
> allowed to change at this point
>=20
> >=20
> > 2. Hardware incompatibility issues are not really relevant to us but to
> > the person using the key.
>=20
> It is relevant to us to the extent of discussion for hardware token for d=
evs
>=20

Sure but I think that's the matter of 'recommended' vs 'minimal'.
But that part of the GLEP probably needs to change/be clarified as well.

> >=20
> > 3. Developer keys are mostly for internal use, while the majority of
> > users verify only the infra signatures, so I don't think we have to be
> > that concerned about interoperability of the algos, provided that it
> > works for infra purposes.
>=20
> This depends on the discussion of rsync vs git, if you expect end-users
> to verify git commits from developers directly you require them to use
> the 2.2 branch, whereby some server users prefer 1.4 for its smaller
> footprint etc. If we conclude that the git repo is internal and not to
> be exposed to end-users per se, but distribution happens in curated git

I honestly don't think Gentoo is the distribution where we let people
stay with obsolete versions for 'smaller footprint'.

--=20
Best regards,
Micha=C5=82 G=C3=B3rny

--=-r5NpkN4xGb7cWavwBL2h
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: This is a digitally signed message part
Content-Transfer-Encoding: 7bit

-----BEGIN PGP SIGNATURE-----
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=Uq6x
-----END PGP SIGNATURE-----

--=-r5NpkN4xGb7cWavwBL2h--