From nobody Tue May 7 03:24:26 2024 X-Original-To: bugs@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4VYNtM1MYmz5K3nC for ; Tue, 07 May 2024 03:24:27 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4VYNtM04wLz3wwv for ; Tue, 7 May 2024 03:24:27 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1715052267; a=rsa-sha256; cv=none; b=ggd1aD2r52Ifpaj4+i1zQ7joD3FbOYK+trOybnjDN4fCcqk7x5DMiP160R4gXWZM7+HvOH u8dxb48+HKEocgs87KTY3qarE7TjxXjLSDR2LLbpCHdFdX3HfcbyJ8tXEAwBuYp+4aWjcj 3sDbDwb842r8Ex7X0nceFOaOWUX1mNOtZjvtKaEV4mtearqxE5R0JopscniVEvKTvhOOJz BCrvYcm8pdkY2VpChJoaSV90k7Rge42N5Nx2+cGMy6DlcfmhL4g5bjxqKZzCtENgWHr/+m +G8fQU5j0f/L7vfGvUCpGV9I5QulzPCyJbnyWECrV2HtCxRwTX87Y7wyi4Kx2g== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1715052267; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=kb4loe5Qv2sVRA28S1juxMJUL4LWnit29lcBuN17WNE=; b=ZluWu/tNnqcDWu+jASzJN0jYJzlZIswTKFtFEKe+K6hWObMs+BjufG0A1ZM4OpJXWKv9iH +YkUNuJYDKknpV0dAsq57d0ti0hnC2NX7NB/MKG1C6p4waVfostKZ05bsgfX6fGbzvQTCT 2AKcF4NTgk1+ztogE9MTxOYjwJWsaD29WfviiiWch1QBH8kNtDZH6Ig2RbWqJV90rZkQwh uc4knxHf3hRwkq7DSOyhWlFcC/UCWAaXEWAoNz/t28FPo8t8LuSM/nec5R9Yr3ecM9E2+1 jL6eU3og9etlLi57g4dgS32DI2guQcfkB4UAvvM7UulYh4sAOPcbxylCXtjC1A== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4VYNtL6pfyzP2r for ; Tue, 7 May 2024 03:24:26 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 4473OQLZ001365 for ; Tue, 7 May 2024 03:24:26 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 4473OQVD001363 for bugs@FreeBSD.org; Tue, 7 May 2024 03:24:26 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 278825] ssh-keygen: default type of key is changed to ed25519 with 15-CURRENT but is still rsa with 13-STABLE and 14-STABLE Date: Tue, 07 May 2024 03:24:26 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: new X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: bin X-Bugzilla-Version: Unspecified X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: yasu@freebsd.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: bugs@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: bug_id short_desc product version rep_platform op_sys bug_status bug_severity priority component assigned_to reporter cc Message-ID: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Bug reports List-Archive: https://lists.freebsd.org/archives/freebsd-bugs List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-bugs@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D278825 Bug ID: 278825 Summary: ssh-keygen: default type of key is changed to ed25519 with 15-CURRENT but is still rsa with 13-STABLE and 14-STABLE Product: Base System Version: Unspecified Hardware: Any OS: Any Status: New Severity: Affects Some People Priority: --- Component: bin Assignee: bugs@FreeBSD.org Reporter: yasu@freebsd.org CC: emaste@freebsd.org There are following sentences in the commit messages of base edf8578117e8. ---------------------------------------------------------------------- * ssh-keygen(1): generate Ed25519 keys by default. [NOTE: This change was already merged into FreeBSD.] ---------------------------------------------------------------------- The commit is merged to stable/13 as base 221a6bc397ad and to stable/14 as = base b24ca3caa752. So the default should be ed25519 with all of latest these branches. And I checked it. On latest 15-CURRENT ssh-keygen tries to create ed25519 key pair as is expected. ---------------------------------------------------------------------- yasu@rolling-vm-freebsd1[1014]% uname -v FreeBSD 15.0-CURRENT #0 main-n269883-12117d0e9314: Sat May 4 00:49:39 JST = 2024 =20=20=20 rootz@rolling-vm-freebsd1.home.utahime.org:/usr/obj/usr/src/amd64.amd64/sys= /GENERIC yasu@rolling-vm-freebsd1[1014]% ssh-keygen Generating public/private ed25519 key pair. Enter file in which to save the key (/home/yasu/.ssh/id_ed25519): ^C yasu@rolling-vm-freebsd1[1015]%=20 ---------------------------------------------------------------------- On latest 13-STABLE and 14-STABLE, however, it tries to create rsa key pair. ---------------------------------------------------------------------- yasu@rolling-vm-freebsd4[1002]% uname -v FreeBSD 13.3-STABLE stable/13-n257830-825cb4c850f2 GENERIC yasu@rolling-vm-freebsd4[1003]% ssh-keygen Generating public/private rsa key pair. Enter file in which to save the key (/home/yasu/.ssh/id_rsa): ^C yasu@rolling-vm-freebsd4[1004]% ---------------------------------------------------------------------- ---------------------------------------------------------------------- yasu@rolling-vm-freebsd5[1002]% uname -v FreeBSD 14.1-PRERELEASE #0 stable/14-n267586-19e335596658: Thu May 2 20:41= :56 UTC 2024=20=20=20=20 root@releng1.nyi.freebsd.org:/usr/obj/usr/src/amd64.amd64/sys/GENERIC yasu@rolling-vm-freebsd5[1003]% ssh-keygen Generating public/private rsa key pair. Enter file in which to save the key (/home/yasu/.ssh/id_rsa): ^C yasu@rolling-vm-freebsd5[1004]% ---------------------------------------------------------------------- I checked commit log of main branch and found following change is committed before base edf8578117e8. ---------------------------------------------------------------------- commit c9315099f69e Author: Ed Maste AuthorDate: Thu Sep 7 12:32:39 2023 -0400 Commit: Ed Maste CommitDate: Thu Sep 7 13:34:21 2023 -0400 ssh-keygen: Generate Ed25519 keys when invoked without arguments Ed25519 keys are convenient because they're much smaller, and the next OpenSSH release (9.5) will switch to them by default. Apply the change to FreeBSD main now, to help identify issues as early as possible. Reviewed by: kevans, karels, des Relnotes: Yes Obtained from: OpenBSD 9de458a24986 Sponsored by: The FreeBSD Foundation Differential Revision: https://reviews.freebsd.org/D41773 ---------------------------------------------------------------------- But there isn't corresponding commit in either stable/13 or stable/14. So it seems default type of key is still rsa with 13-STABLE and 14-STABLE because above commit is forgotten to be merged to them. Cc-ing committer of base c9315099f69e. --=20 You are receiving this mail because: You are the assignee for the bug.=