On 11/10/20 2:18 PM, Ben Cotton wrote: Hi Ben, did you get back to look into this during last months (busy ones were they)? We need to strip these curves from upstream tarballs and it would be great to have this resolved (in either way) rather sooner than later. My main concern is the libgcrypt but guys handling other packages would like to hear an authoritative answer too: https://bugzilla.redhat.com/show_bug.cgi?id=1413618 Thanks, -- Jakub Jelen Senior Software Engineer Crypto Team, Security Engineering Red Hat, Inc.

On 3/18/21 4:10 PM, Ben Cotton wrote: Hi, I wanted to bring up this topic once more again as it was suggested that if the curves are build-time disabled we should be able to go around without hobbling the source tarball. I proposed the following change to libgcrypt to support build-time disabling brainpool curves and I wanted to double-check if this approach is legally acceptable: https://dev.gnupg.org/T5520#149566 Thanks, -- Jakub Jelen Crypto Team, Security Engineering Red Hat, Inc.

Am Montag, dem 13.09.2021 um 09:38 -0400 schrieb Yaakov Selkowitz: Well, are there any chances for legal to reevaluate the ability to ship the Brainpool ECC within Fedora and/or RHEL? Those curves are the IT-security recommendation and almost the de-facto standard for cryptography in most of the European countries, especially when it comes to the online functionality of the issued ID documents. AFAIK, the implementation of Brainpool ECC in OpenSSL and OpenJDK has been contributed by Oracle, and they claim not to use, nor violate, any patented algorithms within their code. Thanks, Björn aka besser82

Am Dienstag, dem 14.09.2021 um 13:18 -0400 schrieb Matthew Miller: Thank you in advance for your efforts!

Am 14.10.21 um 21:44 schrieb Björn 'besser82' Esser: Just wanted to mention that this affects me as well. For example electronic prescriptions in Germany require signatures with brainpool curves so as of now we'd have to rebuild OpenSSL to verify these signatures... Felix

Am Samstag, dem 16.10.2021 um 23:24 -0400 schrieb Matthew Miller: Here is a technical reference document (TR-03116-4) issued by German "BSI" [1] (Federal agency for IT security). On the very bottom of page 21 it says: "Außerdem muss die elliptische Kurve BrainpoolP256r1 für die ECC-Verfahren unterstützt werden" -> "Additionally support for BrainpoolP256r1 ECC is mandatory." In TR-03116-2 [2] on page 9 one can also find the mandatory requirement for Brainpool ECC: "Für kryptographische Algorithmen basierend auf Elliptischen Kurven (d.h. ECDSA und ECKA) sind die Brainpool Domain Parameter [26] in den entsprechenden Bitlängen zu verwenden." -> "For cryptographic algorithms based on ECC (ECDSA, ECKA) Brainpool domain parameters with adequate bit lengths as shown are to be used." Thanks, Björn [1] https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Publikationen/Technis... [2] https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Publikationen/Technis...

On Sun, Oct 17, 2021 at 12:25:52PM +0200, Felix Schwarz wrote: Thanks both of you -- I'll forward these on and see if it helps. -- Matthew Miller <mattdm(a)fedoraproject.org&gt; Fedora Project Leader

I'm hitting this problem as well with the German ID (eAU), see BZ: https://bugzilla.redhat.com/show_bug.cgi?id=2000306 Some BSI tech guidelines relating to ECCs are actually available in english, too, e.g.: https://www.bsi.bund.de/SharedDocs/Downloads/EN/BSI/Publications/TechGuid... https://www.bsi.bund.de/SharedDocs/Downloads/EN/BSI/Publications/TechGuid... Quoting from the former doc: There is more anecdotal evidence e.g. here by ARM Mbed: https://tls.mbed.org/kb/cryptography/elliptic-curve-performance-nist-vs-b... Quote: Can you optimize Brainpool curves to be as fast as the NIST curves? Nitrokey docs also show using Brainpool curves in their docs: https://docs.nitrokey.com/pro/linux/ecc.html distributions Ubuntu (since 18.04), Debian (from Stretch onwards), They apparently haven't tested their guide on Fedora in a while ;) All of the above makes it look to me as though Brainpool curves were specifically designed to NOT touch on any patents. I'd be curious if any other of the big distros exclude the Brainpool curves too. On the linked BZ it was stated that Xubuntu includes them. It would be great if the current exclusion of those curves would be reevaluated. Thanks, Christian

I will check back again. On Sun, Jan 16, 2022 at 06:21:05PM -0000, Julian Sikorski wrote: -- Matthew Miller <mattdm(a)fedoraproject.org&gt; Fedora Project Leader

Thank you! Am 06.04.22 um 16:13 schrieb Matthew Miller: > Sooooo, these things move slowly, but this _is_ being worked on. I'll let > you know when I can. > > On Fri, Jan 28, 2022 at 05:19:34PM -0500, Matthew Miller wrote: >> I will check back again. >> >> On Sun, Jan 16, 2022 at 06:21:05PM -0000, Julian Sikorski wrote: >>> Hello Matthew, >>> >>> are there any updates regarding this? >>> >>> Best regards, >>> Julian >>> _______________________________________________ >>> legal mailing list -- legal(a)lists.fedoraproject.org >>> To unsubscribe send an email to legal-leave(a)lists.fedoraproject.org >>> Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ >>> List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines >>> List Archives: https://lists.fedoraproject.org/archives/list/legal@lists.fedoraproject.org >>> Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure >> >> -- >> Matthew Miller >> <mattdm(a)fedoraproject.org&gt; >> Fedora Project Leader >> _______________________________________________ >> legal mailing list -- legal(a)lists.fedoraproject.org >> To unsubscribe send an email to legal-leave(a)lists.fedoraproject.org >> Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ >> List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines >> List Archives: https://lists.fedoraproject.org/archives/list/legal@lists.fedoraproject.org >> Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure >

On Wed, Apr 06, 2022 at 05:31:10PM +0200, Felix Schwarz wrote: I have been told that it is okay to include Brainpool ECC in Fedora. Thank you for your patience. -- Matthew Miller <mattdm(a)fedoraproject.org&gt; Fedora Project Leader

On Tue, 2022-11-08 at 10:19 -0500, Matthew Miller wrote: So can you remove blocker FE_LEGAL tracker on https://bugzilla.redhat.com/show_bug.cgi?id=1413618 ? and write that is approved please -- Sérgio M. B.

On Tue, Nov 8, 2022 at 10:24 PM Richard Fontana <rfontana(a)redhat.com&gt; wrote: bugzilla.redhat.com, that is

On Tue, Nov 8, 2022 at 10:34 PM Neal Gompa <ngompa13(a)gmail.com&gt; wrote: Ah, of course. It's an "advanced field" that is hidden by default (and unhidden by a button way off to the right and easy to overlook, for me at least). Done now. Richard