Skip to content

WIP: support for draft-ietf-openpgp-persistent-symmetric-keys #667

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
hko-s wants to merge 18 commits into
base: main
Choose a base branch
from
Draft

WIP: support for draft-ietf-openpgp-persistent-symmetric-keys #667

hko-s wants to merge 18 commits into from

Conversation

@hko-s
Copy link
Contributor

@hko-s hko-s commented Nov 22, 2025
edited
Loading

This is an early implementation of draft-ietf-openpgp-persistent-symmetric-keys.

This PR branch is intended for interop testing, and should not be merged before the draft arrives in a sufficiently stable state in the OpenPGP WG!

TODO:

  • Introduce and use remaining *-Key traits
  • Cleanup
  • Look into password-locking PSK

@hko-s hko-s marked this pull request as draft November 22, 2025 16:50
@hko-s hko-s force-pushed the PSK branch 9 times, most recently from 04eca35 to 964646d Compare November 25, 2025 10:09
@hko-s hko-s mentioned this pull request Nov 25, 2025
Merged
@hko-s hko-s force-pushed the PSK branch 7 times, most recently from 3eeb4cd to c28dbb3 Compare November 29, 2025 20:49
dignifiedquire
dignifiedquire reviewed Nov 30, 2025
View reviewed changes
@hko-s hko-s force-pushed the PSK branch 4 times, most recently from 491a545 to f2a0d4c Compare December 5, 2025 21:31
dignifiedquire
dignifiedquire reviewed Dec 7, 2025
View reviewed changes
dignifiedquire
dignifiedquire reviewed Dec 7, 2025
View reviewed changes
dignifiedquire
dignifiedquire reviewed Dec 7, 2025
View reviewed changes
dignifiedquire
dignifiedquire reviewed Dec 7, 2025
View reviewed changes
dignifiedquire
dignifiedquire reviewed Dec 7, 2025
View reviewed changes
src/packet/key/symmetric.rs
}
}

pub struct UnlockablePersistentSymmetricKey<'a> {
Copy link
Member

@dignifiedquire dignifiedquire Dec 7, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

this concept is new, why do we need it?

Copy link
Contributor Author

@hko-s hko-s Dec 7, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

My idea for that type was that it allows passing a Password into a regular encrypt and verify call like in d09cd49.

That seems like a reasonably nice way to hide away the need for a password from the rest of the code.

dignifiedquire
dignifiedquire reviewed Dec 7, 2025
View reviewed changes
src/packet/key/symmetric.rs
impl<'a> VerifyingKey for UnlockablePersistentSymmetricKey<'a> {
fn verify(
&self,
_hash: HashAlgorithm,
Copy link
Member

@dignifiedquire dignifiedquire Dec 7, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

should at least check it in some form

dignifiedquire
dignifiedquire reviewed Dec 7, 2025
View reviewed changes
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dignifiedquire dignifiedquire dignifiedquire left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@hko-s @dignifiedquire