Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-60564

Rebase OpenSSH to 9.9

XMLWordPrintable

    • openssh-9.9p1-1.el10
    • No
    • Low
    • 1
    • rhel-sst-security-crypto
    • ssg_security
    • 13
    • 2
    • False
    • Hide

      None

      Show
      None
    • Yes
    • Crypto24Q4
    • Hide

      AC: OpenSSH version is 9.9 and number of regressions is reasonable

      Show
      AC: OpenSSH version is 9.9 and number of regressions is reasonable
    • Pass
    • Not Needed
    • RegressionOnly
    • Rebase
    • Hide
      https://www.openssh.com/txt/release-9.9

      Most important:
      add experimental support for a new hybrid post-quantum key
         exchange based on the FIPS 203 Module-Lattice Key Enapsulation
         mechanism (ML-KEM) combined with X25519 ECDH as described by
         https://datatracker.ietf.org/doc/html/draft-kampanakis-curdle-ssh-pq-ke-03
         This algorithm "mlkem768x25519-sha256" is available by default in non-FIPS mode.
      Show
      https://www.openssh.com/txt/release-9.9 Most important: add experimental support for a new hybrid post-quantum key    exchange based on the FIPS 203 Module-Lattice Key Enapsulation    mechanism (ML-KEM) combined with X25519 ECDH as described by     https://datatracker.ietf.org/doc/html/draft-kampanakis-curdle-ssh-pq-ke-03    This algorithm "mlkem768x25519-sha256" is available by default in non-FIPS mode.
    • Proposed
    • None

      Rebase OpenSSH to 9.9 to support MLKEM

              dbelyavs@redhat.com Dmitry Belyavskiy
              dbelyavs@redhat.com Dmitry Belyavskiy
              Dmitry Belyavskiy Dmitry Belyavskiy
              Miluse Bezo Konecna Miluse Bezo Konecna
              Jan Fiala Jan Fiala
              Votes:
              0 Vote for this issue
              Watchers:
              6 Start watching this issue

                Created:
                Updated: