5:46 a.m.
Hello legal.
I see that ECDSA is already included in Fedora in various packages, so I assume
that is OK.
This software here:
https://github.com/starkbank/ecdsa-python
Says:
We currently support secp256k1 [curve].
Is that OK to package in Fedora or not?
Thanks.
--
Miro Hrončok
--
Phone: +420777974800
IRC: mhroncok
1:26 p.m.
New subject: Is ECDSA secp256k1 elliptic curve permitted to be packaged in Fedora?
On Tue, Jul 05, 2022 at 12:46:10PM +0200, Miro Hrončok wrote:
Hello legal.
I see that ECDSA is already included in Fedora in various packages, so I assume
that is OK.
This software here:
https://github.com/starkbank/ecdsa-python
Says:
> We currently support secp256k1 [curve].
Is that OK to package in Fedora or not?
IANAL or anybody from Fedora, but a similar
thread is still waiting for
a larger proclaimation about Elliptic Curves in general:
https://lists.fedoraproject.org/archives/list/legal@lists.fedoraproject.o...
The package you linked includes secp256k1 and prime256v1.
--
Robin Hugh Johnson
Gentoo Linux: Dev, Infra Lead, Foundation Treasurer
E-Mail : robbat2(a)gentoo.org
GnuPG FP : 11ACBA4F 4778E3F6 E4EDF38E B27B944E 34884E85
GnuPG FP : 7D0B3CEB E9B85B1F 825BCECF EE05E6F6 A48F6136
7:59 a.m.
New subject: Is ECDSA secp256k1 elliptic curve permitted to be packaged in Fedora?
On Tue, Jul 05, 2022 at 12:46:10PM +0200, Miro Hrončok wrote:
IANAL or anybody from Fedora, but a similar
thread is still waiting for
a larger proclaimation about Elliptic Curves in general:
https://lists.fedoraproject.org/archives/list/legal@lists.fedoraproject.o...
The package you linked includes secp256k1 and prime256v1.
secp256k1 seems to be OK.
For example, it is included in nettle, but it removes secp192r1 and secp224r1 from its
sources.
It is also included in openssl:
$ openssl ecparam -list_curves
secp224r1 : NIST/SECG curve over a 224 bit prime field
secp256k1 : SECG curve over a 256 bit prime field
secp384r1 : NIST/SECG curve over a 384 bit prime field
secp521r1 : NIST/SECG curve over a 521 bit prime field
prime256v1: X9.62/SECG curve over a 256 bit prime field
So it looks like the removal of secp192r1 and secp224r1 from nettle seems to be outdated,
because at least the latter curve is enabled in OpenSSL.
Wasn't there some kind of wiki page that listed elliptic curves which we weren't
allowed to ship? I can't seem to find it any longer, so it might have fallen victim to
the move of the Legal docs to GitLab ...
Fabio
7:25 p.m.
New subject: Is ECDSA secp256k1 elliptic curve permitted to be packaged in Fedora?
On 8/25/22 6:59 AM, Fabio Valentini wrote:
> On Tue, Jul 05, 2022 at 12:46:10PM +0200, Miro Hrončok wrote:
> IANAL or anybody from Fedora, but a similar
> thread is still waiting for
> a larger proclaimation about Elliptic Curves in general:
> https://lists.fedoraproject.org/archives/list/legal@lists.fedoraproject.o...
>
> The package you linked includes secp256k1 and prime256v1.
secp256k1 seems to be OK.
For example, it is included in nettle, but it removes secp192r1 and secp224r1 from its
sources.
It is also included in openssl:
$ openssl ecparam -list_curves
secp224r1 : NIST/SECG curve over a 224 bit prime field
secp256k1 : SECG curve over a 256 bit prime field
secp384r1 : NIST/SECG curve over a 384 bit prime field
secp521r1 : NIST/SECG curve over a 521 bit prime field
prime256v1: X9.62/SECG curve over a 256 bit prime field
So it looks like the removal of secp192r1 and secp224r1 from nettle seems to be outdated,
because at least the latter curve is enabled in OpenSSL.
Wasn't there some kind of wiki page that listed elliptic curves which we weren't
allowed to ship? I can't seem to find it any longer, so it might have fallen victim to
the move of the Legal docs to GitLab ...
We were careful on the move, and I don't recall anything of this sort. I
searched on the wiki, and seems we may have missed some legal-related
pages, as here it is: https://fedoraproject.org/wiki/Legal:ECC
That being said, looks like that was last updated 3 years ago, so not
sure if there have been changes since then?
Between this email thread and others related, I'm not clear on what the
exact question is in terms of what it is that hasn't been allowed and is
being asked to allow?
Thanks,
Jilayne
7:54 p.m.
New subject: Is ECDSA secp256k1 elliptic curve permitted to be packaged in Fedora?
On Thu, Aug 25, 2022 at 8:25 PM Jilayne Lovejoy <jlovejoy(a)redhat.com> wrote:
On 8/25/22 6:59 AM, Fabio Valentini wrote:
>> On Tue, Jul 05, 2022 at 12:46:10PM +0200, Miro Hrončok wrote:
>> IANAL or anybody from Fedora, but a similar
>> thread is still waiting for
>> a larger proclaimation about Elliptic Curves in general:
>> https://lists.fedoraproject.org/archives/list/legal@lists.fedoraproject.o...
>>
>> The package you linked includes secp256k1 and prime256v1.
> secp256k1 seems to be OK.
> For example, it is included in nettle, but it removes secp192r1 and secp224r1 from
its sources.
>
> It is also included in openssl:
>
> $ openssl ecparam -list_curves
> secp224r1 : NIST/SECG curve over a 224 bit prime field
> secp256k1 : SECG curve over a 256 bit prime field
> secp384r1 : NIST/SECG curve over a 384 bit prime field
> secp521r1 : NIST/SECG curve over a 521 bit prime field
> prime256v1: X9.62/SECG curve over a 256 bit prime field
>
> So it looks like the removal of secp192r1 and secp224r1 from nettle seems to be
outdated, because at least the latter curve is enabled in OpenSSL.
>
> Wasn't there some kind of wiki page that listed elliptic curves which we
weren't allowed to ship? I can't seem to find it any longer, so it might have
fallen victim to the move of the Legal docs to GitLab ...
>
>
We were careful on the move, and I don't recall anything of this sort. I
searched on the wiki, and seems we may have missed some legal-related
pages, as here it is: https://fedoraproject.org/wiki/Legal:ECC
That being said, looks like that was last updated 3 years ago, so not
sure if there have been changes since then?
Between this email thread and others related, I'm not clear on what the
exact question is in terms of what it is that hasn't been allowed and is
being asked to allow?
I'm not certain any of this is necessary anymore. At least the
documentation in the hobble-openssl script indicates nothing that we
still need to strip out:
https://src.fedoraproject.org/rpms/openssl/blob/43e576feab04b0557f63e9eec...
It would be good to check if we can drop all the "hobble" logic for
crypto libraries now.
--
真実はいつも一つ!/ Always, there's only one truth!
5:24 a.m.
New subject: Is ECDSA secp256k1 elliptic curve permitted to be packaged in Fedora?
On Fri, Aug 26, 2022 at 2:25 AM Jilayne Lovejoy <jlovejoy(a)redhat.com> wrote:
We were careful on the move, and I don't recall anything of this sort. I
searched on the wiki, and seems we may have missed some legal-related
pages, as here it is: https://fedoraproject.org/wiki/Legal:ECC
Yes, this is what I was looking for, thanks. I couldn't find it myself.
That being said, looks like that was last updated 3 years ago, so
not
sure if there have been changes since then?
It would be good to know whether there's actually still any elliptic
curves that we can *not* ship.
For example, the package for nettle still removes secp224r1 and
secp192r1 from its sources.
At least the former no longer seems to be correct, since it's listed
as acceptable, and also used by OpenSSL.
Between this email thread and others related, I'm not clear on
what the
exact question is in terms of what it is that hasn't been allowed and is
being asked to allow?
I think it would be good to know:
- Is secp192r1 still not acceptable, or can it be included in nettle now?
- Are other elliptic curves acceptable as well? I see questions on
this list about brainpool curves, which are apparently mandated by
some German government agencies now.
- Are there actually any elliptic curves that are still *not*
considered acceptable? I.e. could the "hobble" logic be dropped from
nettle and openssl entirely?
Fabio
601
days inactive
653
days old
5 comments
5 participants
participants (5)
-
Fabio Valentini -
Jilayne Lovejoy -
Miro Hrončok -
Neal Gompa -
Robin H. Johnson