From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mp11.migadu.com ([2001:41d0:8:6d80::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by ms5.migadu.com with LMTPS id SKaBKyUXKWM4VQAAbAwnHQ (envelope-from ) for ; Tue, 20 Sep 2022 03:28:05 +0200 Received: from aspmx1.migadu.com ([2001:41d0:8:6d80::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by mp11.migadu.com with LMTPS id QF6pKyUXKWPgiwAA9RJhRA (envelope-from ) for ; Tue, 20 Sep 2022 03:28:05 +0200 Received: from mail.notmuchmail.org (yantan.tethera.net [135.181.149.255]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by aspmx1.migadu.com (Postfix) with ESMTPS id 4CB7120315 for ; Tue, 20 Sep 2022 03:28:05 +0200 (CEST) Received: from yantan.tethera.net (localhost [127.0.0.1]) by mail.notmuchmail.org (Postfix) with ESMTP id 7EE6D5F365; Tue, 20 Sep 2022 01:28:02 +0000 (UTC) Received: from fethera.tethera.net (fethera.tethera.net [IPv6:2607:5300:60:c5::1]) by mail.notmuchmail.org (Postfix) with ESMTP id 44A5F5F35E for ; Tue, 20 Sep 2022 01:28:00 +0000 (UTC) Received: by fethera.tethera.net (Postfix, from userid 1001) id 2DE955FBC0; Mon, 19 Sep 2022 21:27:59 -0400 (EDT) Received: (nullmailer pid 3759255 invoked by uid 1000); Tue, 20 Sep 2022 01:27:57 -0000 From: David Bremner To: Justus Winter , notmuch@notmuchmail.org Subject: Re: [PATCH 2/2] test: replace aging OpenPGP key used in the test suite In-Reply-To: <20220909161354.715326-1-justus@sequoia-pgp.org> References: <20220909161250.715226-1-justus@sequoia-pgp.org> <20220909161354.715326-1-justus@sequoia-pgp.org> Date: Mon, 19 Sep 2022 22:27:57 -0300 Message-ID: <87r1067s2q.fsf@tethera.net> MIME-Version: 1.0 Message-ID-Hash: GURAWYYUIMG2PU7V65VHS2OI4UKCPZ7T X-Message-ID-Hash: GURAWYYUIMG2PU7V65VHS2OI4UKCPZ7T X-MailFrom: david@tethera.net X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-notmuch.notmuchmail.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header X-Mailman-Version: 3.3.3 Precedence: list List-Id: "Use and development of the notmuch mail system." List-Help: List-Owner: List-Post: List-Subscribe: List-Unsubscribe: Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Migadu-Flow: FLOW_IN X-Migadu-To: larch@yhetil.org X-Migadu-Country: DE ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org; s=key1; t=1663637285; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references:list-id:list-help: list-owner:list-unsubscribe:list-subscribe:list-post; bh=hjCRNvhEEOYyRe1cApTVm4XAlwrkz+tRVn7ucZ0+WD0=; b=UP8c7dhzDh5V/GeSgA7EJZdq5cpynJJiOyo1O0aLAERhYk6Xc9j0xAI2JpJSMWoyZG2Bqi Dxc77MoKMOWWX31JQ680eeqZHxf4d2LIuzFYQ4VNzj965FKEiR5hxuqbMuNQYO3a3Ip/pf kqZBm+94DHt6yEGqY/4wd2SV5jTB9kfE8ZWlfCfPcX3vvX+yBwEEpj0CrbGadJa14J27Qm CObm4M58UNTsnQLz2e0lLLyrTQ0ZCYJAeKCG0mli6X/+6Z0pPQ/Nz8SG97CgZKRGzL8YIq 0OeMCcnI0GzEQOYtzln/QiLb2HXcHeEvAigp/SlWoPTBGbtpni3uZRMAgHFOXg== ARC-Seal: i=1; s=key1; d=yhetil.org; t=1663637285; a=rsa-sha256; cv=none; b=s5NfFZ8de75HLqsPTPbDferdLWtM6oKYe6cVFzDv3+H2iIQPj7xpblqzQHpm7JqO0FBTKo iWM6YMgfsLrX4zwmyJ5hkrkP8SRCFIZFm7SDlGhDtCazHiG7BIDFJIDudvHFzKYkFkFx2e iE+I5H0lahe3O4Jca56+OPYj9x35f4aDuFz0uyudd/BVyABHn97k8j3ptI9gZo3GKSb14r e5gW/Mk5JxBt7ZuqaK7+teW7gy1QSLzjVRP8fHggu671GhQoYXe+wIOEO9qlnVB5LNOwBu xGq72pAv5XG80qfE8+kcdAJYYQ84eyF5xpQ7rS5MWt4zJ+LdWWcHSA7Iy71UYw== ARC-Authentication-Results: i=1; aspmx1.migadu.com; dkim=none; dmarc=none; spf=pass (aspmx1.migadu.com: domain of notmuch-bounces@notmuchmail.org designates 135.181.149.255 as permitted sender) smtp.mailfrom=notmuch-bounces@notmuchmail.org X-Migadu-Spam-Score: -2.12 Authentication-Results: aspmx1.migadu.com; dkim=none; dmarc=none; spf=pass (aspmx1.migadu.com: domain of notmuch-bounces@notmuchmail.org designates 135.181.149.255 as permitted sender) smtp.mailfrom=notmuch-bounces@notmuchmail.org X-Migadu-Queue-Id: 4CB7120315 X-Spam-Score: -2.12 X-Migadu-Scanner: scn1.migadu.com X-TUID: aLDLS+TLsGm3 Justus Winter writes: > This replaces the old OpenPGPv4 key that is used in the test suite > with a more modern OpenPGPv4 key. All cryptographic artifacts in the > test suite are updated accordingly. > > Having old cryptographic artifacts in the test suite presents a > problem once the old algorithms are rejected by contemporary > implementations. > > For reference, this is the old key. > > sec rsa1024 2011-02-05 [SC] > 5AEAB11F5E33DCE875DDB75B6D92612D94E46381 > uid [ unknown] Notmuch Test Suite (INSECURE!) > ssb rsa1024 2011-02-05 [E] > > And this is the new key. Note that is has the same shape, but uses > Ed25519 and Cv25519 instead of 1024-bit RSA. > > sec ed25519 2022-09-07 [SC] > 9A3AFE6C60065A148FD4B58A7E6ABE924645CC60 > uid [ultimate] Notmuch Test Suite (INSECURE!) > ssb cv25519 2022-09-07 [E] The configure script still looks for gnupg-secret-key.asc, so that needs to be updated as well. I applied the first patch in the series to master d