The code isn’t actually the hardest part but rather procuring a HSM with support for PQC. Believe it or not but Arch Linux doesn’t have the same financial backing as RedHat.
We did consider it though, you can see the exact list and reasoning at https://rfc.archlinux.page/0059-automated-digital-signing-of-os-artifacts/#alternatives-considered
If there are any hardware vendors that'd happily sponsor these I’m all ears.
The FOSDEM talk is definitely on our radar, thanks and have a nice day! 👋
Wiktor Kwapisiewicz
npub185…lycwv
2025-12-16 14:09:09 UTC
in reply to nevent1q…a8em
Author Public Key
npub1859fy7akhp50ffz23kwmep24jnvdphwfx25jgmkgdavn8mekhkusflycwvSeen on
wss://relay.momostr.pinkPublished at
2025-12-16 14:09:09 UTCEvent JSON
{
"id": "70670cc6ea48f76d7edbbc32ebc22abc553f6bfd1277329948a5726cd883f8aa",
"pubkey": "3d0a927bb6b868f4a44a8d9dbc855594d8d0ddc932a9246ec86f5933ef36bdb9",
"created_at": 1765894149,
"kind": 1,
"tags": [
[
"e",
"a97ed3477b0ad61c8926ba9938208317847093a47176c999c9a4f3cee476adc9",
"",
"root",
"1b8b1dae59145a436a7953dcc27c91318d6d679fe967586782e9667c31dbc930"
],
[
"e",
"515ff2e8edde3687f9704fa5df27add62aa49d41bb6bee2de86bbcf45ab86df2",
"",
"reply",
"1b8b1dae59145a436a7953dcc27c91318d6d679fe967586782e9667c31dbc930"
],
[
"p",
"1b8b1dae59145a436a7953dcc27c91318d6d679fe967586782e9667c31dbc930"
],
[
"p",
"4975e09c75398be563561901e0ea833dce27ab27128429a32ba319f8dd0b9135"
],
[
"p",
"76909ae428f3dcd4234f538f4327270d6a4bb731f31c1764cb8944efc62ee783"
],
[
"proxy",
"https://metacode.biz/@wiktor/statuses/q24k81ItEidrq-oEnxL9f3IHaFl_HQ1z_hXiB9d0uBE",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://metacode.biz/@wiktor/statuses/q24k81ItEidrq-oEnxL9f3IHaFl_HQ1z_hXiB9d0uBE",
"pink.momostr"
],
[
"-"
]
],
"content": "The code isn’t actually the hardest part but rather procuring a HSM with support for PQC. Believe it or not but Arch Linux doesn’t have the same financial backing as RedHat.\n\nWe did consider it though, you can see the exact list and reasoning at https://rfc.archlinux.page/0059-automated-digital-signing-of-os-artifacts/#alternatives-considered\n\nIf there are any hardware vendors that'd happily sponsor these I’m all ears.\n\nThe FOSDEM talk is definitely on our radar, thanks and have a nice day! 👋",
"sig": "cec6a5bfdff34541b44be96488ec1bdad5beda67b5bdf9a7fb9966f9b1e745c97126483d2814bb5703b04b9cf59cd94e603acf3c392a0e35b809efa06ab8708b"
}