[Bug 3923] New: [patch] Support of Ed448

[bugzilla-daemon at mindrot.org]

https://bugzilla.mindrot.org/show_bug.cgi?id=3923

            Bug ID: 3923
           Summary: [patch] Support of Ed448
           Product: Portable OpenSSH
           Version: 10.2p1
          Hardware: amd64
                OS: Linux
            Status: NEW
          Severity: major
          Priority: P5
         Component: Miscellaneous
          Assignee: unassigned-bugs at mindrot.org
          Reporter: mikhail at zeptobars.com

Created attachment 3941
  --> https://bugzilla.mindrot.org/attachment.cgi?id=3941&action=edit
Patch to support Ed448

Ed448 was my favorite for a very long time, and finally I got to spend
some time with it.
This patch adds ed448 as host/client keys, key generation, SSHFP. X448
is NOT included - everybody are likely using PQ KEX by now.
Basic tests are expanded to cover Ed448, including basic Putty interop.

Requires --with-ed448 and openssl, off by default.

Additional testing:
When built without --with-ed448 - all changes in binaries are verified
to be only caused by __LINE__ differences or sshkey_types enum
differences in sshkey.h. So without --with-ed448 impact should be very
close to 0.

As now more software supports Ed448 out of the box - I have also built
bidirectional interop tests against Erlang/OTP and Python+AsyncSSH, but
these are not part of the patch not to expand dependencies and test
runtime.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.