[Bug 1825712] Re: bind9 is compiled without support for EdDSA DNSSEC keys

Andreas Hasenack andreas at canonical.com
Mon Apr 22 21:16:51 UTC 2019


Maybe this test is good.

With current disco packages:
$ delv +dnssec +multiline @127.0.0.1 ed25519.nl
;; validating ed25519.nl/A: no valid signature found
; unsigned answer
ed25519.nl.             3591 IN A 77.72.150.82
ed25519.nl.             3200171710 IN RRSIG A 15 2 3600 (
                                20190502000000 20190411000000 27662 ed25519.nl.
                                f7HjJcbvekrmuLtXDzjddWJZzZAAFO6fV+NoMCg+UiIl
                                nQjUxNcCvDWuR38XAJuHrctvQOlAg1JmIGwYyKM2DQ== )


With a new build, that does have eddsa support:
$ delv +dnssec +multiline @127.0.0.1 ed25519.nl
; fully validated
ed25519.nl.             3600 IN A 77.72.150.82
ed25519.nl.             3600 IN RRSIG A 15 2 3600 (
                                20190502000000 20190411000000 27662 ed25519.nl.
                                f7HjJcbvekrmuLtXDzjddWJZzZAAFO6fV+NoMCg+UiIl
                                nQjUxNcCvDWuR38XAJuHrctvQOlAg1JmIGwYyKM2DQ== )

-- 
You received this bug notification because you are a member of Ubuntu
Server, which is subscribed to bind9 in Ubuntu.
https://bugs.launchpad.net/bugs/1825712

Title:
  bind9 is compiled without support for EdDSA DNSSEC keys

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/bind9/+bug/1825712/+subscriptions



More information about the Ubuntu-server-bugs mailing list