Bug 2197 - Add ED25519 support to SSHFP dns record
Summary: Add ED25519 support to SSHFP dns record
Status: CLOSED FIXED
Alias: None
Product: Portable OpenSSH
Classification: Unclassified
Component: ssh (show other bugs)
Version: -current
Hardware: All All
: P5 enhancement
Assignee: Assigned to nobody
URL:
Keywords:
: 2223 (view as bug list)
Depends on:
Blocks: V_6_7
  Show dependency treegraph
 
Reported: 2014-01-18 23:45 AEDT by Loganaden Velvindron
Modified: 2014-10-08 08:00 AEDT (History)
4 users (show)

See Also:

Attachments
ed25519 sshfp dns (1.18 KB, patch)
2014-01-18 23:45 AEDT, Loganaden Velvindron 		no flags Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Loganaden Velvindron 2014-01-18 23:45:14 AEDT 
Hi,

Ajay Ramjatan @ tuxlab noticed that ED25519 can't be used for SSHFP DNS while testing the upcoming 6.5

I've attached a diff.
Comment 1 Loganaden Velvindron 2014-01-18 23:45:52 AEDT 
Created attachment 2399 [details]
ed25519 sshfp dns
Comment 2 Damien Miller 2014-01-19 00:26:04 AEDT 
No, the SSH_FP_* values are defined in RFC4255 and new ones will require IETF consensus. This is unlikely to happen for Ed25519 unless and until a RFC is published for the key format.
Comment 3 Loganaden Velvindron 2014-01-19 00:30:46 AEDT 
(In reply to Damien Miller from comment #2)
> No, the SSH_FP_* values are defined in RFC4255 and new ones will
> require IETF consensus. This is unlikely to happen for Ed25519
> unless and until a RFC is published for the key format.

I'm working on that :-)
Comment 4 Loganaden Velvindron 2014-01-19 00:31:23 AEDT 
(In reply to Damien Miller from comment #2)
> No, the SSH_FP_* values are defined in RFC4255 and new ones will
> require IETF consensus. This is unlikely to happen for Ed25519
> unless and until a RFC is published for the key format.

I'm working on that :-)
Comment 5 mancha 2014-04-08 13:55:06 AEST 
*** Bug 2223 has been marked as a duplicate of this bug. ***
Comment 6 Damien Miller 2014-07-03 14:06:43 AEST 
This is committed and will be in openssh-6.7
Comment 7 Damien Miller 2014-10-08 08:00:23 AEDT 
Close all bugs left open from 6.6 and 6.7 releases.