Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-131201

sequoia - register eddsa as an alias to EDDSA-ED25519 (rhel-9)

Linking RHIVOS CVEs to...Migration: Automation ...SWIFT: POC ConversionSync from "Extern...XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Minor Minor
    • rhel-9.8
    • rhel-9.8
    • crypto-policies
    • None
    • crypto-policies-20251126-1.gite9c4db2.el9
    • No
    • Important
    • 1
    • rhel-security-crypto-spades
    • 20
    • 0
    • False
    • False
    • Hide

      None

      Show
      None
    • No
    • Crypto25-11
    • Hide

      AC1) sequoia and sequoia-rpm generated configurations have eddsa = "always" in LEGACY/DEFAULT/FUTURE, it's also added to ignore_invalid (to avoid bumping dependency)

      Implemented by /Sanity/retention (crypto-policies).

      Show
      AC1) sequoia and sequoia-rpm generated configurations have eddsa = "always" in LEGACY/DEFAULT/FUTURE, it's also added to ignore_invalid (to avoid bumping dependency) Implemented by /Sanity/retention (crypto-policies).
    • Pass
    • Enabled
    • Automated
    • Unspecified Release Note Type - Unknown
    • Unspecified
    • Unspecified
    • Unspecified
    • None

      What were you trying to do that didn't work?

      sequoia-openpgp 2.1 split the policy for Ed25519 into two: the v6 signature compliant with RFC 8032 and the legacy v4 signature, under the name "eddsa" (sequoia-pgp/sequoia@2affea78). This adds an "eddsa" entry as an alias to the former, as we don't distinguish them at the crypto-policies level.

      Please provide the package NVR for which the bug is seen:

      crypto-policies-20250905-1.git377cc42.el9_7.noarch

              asosedki@redhat.com Alexander Sosedkin
              omoris Ondrej Moris
              Alexander Sosedkin Alexander Sosedkin
              Conor Tull Conor Tull
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

                Created:
                Updated: