why is this considered a normal thing to push

Use of authenticatedAttributes in this context is normally rejected.

do people think when they pull in kernel kconfig they learn about new ways to hack people and then try to run this and get hacked

do you think linus has done the full kconfig cannonball run recently

i have

insane shit

"authatts" what is the purpose of this typo besides signaling a typo

this one is low-effort. get a real job

this is the one that had me reading that brain destroying nist spec

this one is SO close to sounding like a real commit message. except for all the specifics

so GODDAMN pissed he would create a capability that does not exist like this

this is, btw, one intended result of NIST's document that frames a "signature" as distinct from "hashing"

these people don't deserve to work for the government

The normal digestion of the data is then skipped

nope! nope. not something that you would ever allow in the real world

Note that whilst ML-DSA does allow for an "external mu", CMS doesn't yet
have that standardised.

i didn't actually spend any time looking this up because i assumed it was completely made up

no fucking way am i adding an early return 0 to my real crypto because someone thinks quantum computing is real and can hurt you. pascal's wager

oh yeah this is where i started screaming and saying this is all completely insane shit to be doing in the kernel

this would be headline on lwn if it was in a gnu project

none of this shit makes any sense btw. you can just type shit. IETF material

this is i think when i became convinced oh this is for real like this is gonna be released with signed modules upon 7.0

the fuck are you doing in public_key.h asshole?????

i'm going backwards so this comes before the previous

went into a brief fugue state

this is very pythonic

no. no. that's not real. that's not a thing

he keeps getting his boys to rizz him up

this one's where he acts like people think that going back through time in git is more invisible?

This is necessary because when ML-DSA is used, no digest is calculated.

yeah figured that out after wasting an hour of my life

Note that this represents a change of behaviour

yeah i mean the only thing i don't know is why you would say this out loud. i was literally reading the kbuild docs should i keep going

It may be that this is inadvisable.

i can't understand the theory of this process? like you can act like the IETF in the linux kernel? the place where people do close review?

noticed another completely insane thing https://git.kernel.org/pub/scm/linux/kernel/git/dhowells/linux-fs.git/commit/?h=keys-pqc&id=d3b6dd90e23ef1b57143e60668175ecd890948d1

actually i guess that's the reason for the hackneyed openssl stuff if openssl can sign or something? but anyway only implementing verification is the weirdest way to implement asymmetric crypto

i was gonna say also the code looks wrong bc how does that implement the brain destroying nist standard but ohohoho https://www.phoronix.com/news/Linux-7.0-Crypto-ML-DSA (note: phoronix posted genuine reiser apologia like two years ago. this is not a link because phoronix is good to link to)

This ML-DSA introduction for signing within the kernel comes in the same release of Linux finally removing SHA-1 module signing support.

it is TEXTBOOK fucking IETF to pull this shit

In addition to that initial ML-DSA support is also AES library updates in the now-merged crypto library pull.

yeah that's a normal way to talk about things in a pull request

lol at other links on that phoronix page

Scoped User Access In Linux 6.19 To Reduce Speculation Barriers & Its Performance Hit

CVE-2026-0915: GNU C Library Fixes A Security Issue Present Since 1996

i will literally become a hurd contributor

a single alternate email address for our friend david howells used to write a single commit dated 15 years ago (and from the nearby tags, not likely backdated) weird