Bug 2197

Summary:

Add ED25519 support to SSHFP dns record

Product:

Portable OpenSSH

Reporter:

Loganaden Velvindron <loganaden>

Component:

ssh

Assignee:

Assigned to nobody <unassigned-bugs>

Status:

CLOSED FIXED

Severity:

enhancement

CC:

djm, grawity, mancha1, simon

Priority:

Version:

-current

Hardware:

All

OS:

All

Bug Depends on:

Bug Blocks:

2226

Attachments:

Description	Flags
ed25519 sshfp dns	none

Description Loganaden Velvindron 2014-01-18 23:45:14 AEDT

Hi,

Ajay Ramjatan @ tuxlab noticed that ED25519 can't be used for SSHFP DNS while testing the upcoming 6.5

I've attached a diff.

Comment 1 Loganaden Velvindron 2014-01-18 23:45:52 AEDT

Created attachment 2399 [details]
ed25519 sshfp dns

Comment 2 Damien Miller 2014-01-19 00:26:04 AEDT

No, the SSH_FP_* values are defined in RFC4255 and new ones will require IETF consensus. This is unlikely to happen for Ed25519 unless and until a RFC is published for the key format.

Comment 3 Loganaden Velvindron 2014-01-19 00:30:46 AEDT

(In reply to Damien Miller from comment #2)
> No, the SSH_FP_* values are defined in RFC4255 and new ones will
> require IETF consensus. This is unlikely to happen for Ed25519
> unless and until a RFC is published for the key format.

I'm working on that :-)

Comment 4 Loganaden Velvindron 2014-01-19 00:31:23 AEDT

(In reply to Damien Miller from comment #2)
> No, the SSH_FP_* values are defined in RFC4255 and new ones will
> require IETF consensus. This is unlikely to happen for Ed25519
> unless and until a RFC is published for the key format.

I'm working on that :-)

Comment 5 mancha 2014-04-08 13:55:06 AEST

*** Bug 2223 has been marked as a duplicate of this bug. ***

Comment 6 Damien Miller 2014-07-03 14:06:43 AEST

This is committed and will be in openssh-6.7

Comment 7 Damien Miller 2014-10-08 08:00:23 AEDT

Close all bugs left open from 6.6 and 6.7 releases.