Jay Thoden van Velzen ☁️​🛡️​2d ago
Soatok Dreamseeker

https://docs.openssl.org/master/man7/EVP_PKEY-ML-KEM/#provider-configuration-parameters

Of course the fucking OpenSSL developers choose the worst possible option for PQ keys.

See https://soatok.blog/2025/03/17/post-quantum-cryptography-is-about-the-keys-you-dont-play/ for background.

They really should've just listened to Filippo. https://words.filippo.io/dispatches/ml-kem-seeds/

EVP_PKEY-ML-KEM - OpenSSL Documentation

Apr 29 at 1:59amWeb
Show threadEmelia/Emi2d ago

@soatok I mean, I get supporting it for Shenanigans involving recovered keys, but that doesn't seem at all like something you'd ever want in an everyday library, given the sheer amount of footguns and other problems that can cause...

Unfortunately OpenSSL yet again takes "support every possible configuration" well beyond the logical and into "you now appear to be trying to cause catastrophic cryptographic errors in downstream implementations" territory...

Show threadSoatok Dreamseeker2d ago
@becomethewaifu It's malfeasance that will only create job security for people who clean up unnecessary messes
Show threadMarkus Wamser2d ago
@soatok @becomethewaifu We really need a fork between OpenSSL-The-Swiss-Army-Knife-Where-You-Can-Do-All-The-Crypto-And-Tweak-Every-Parameter-(Unless-You-Want-To-Use-The-CLI) and OpenSSL-The-Production-Lib-With-Sane-Defaults-(And-Only-Those). Oh, wait...