Skip to content

Comments

Arch Linux: describe ed25519 support#131

Closed
ejiektpobehuk wants to merge 2 commits intoopenzfs:masterfrom
ejiektpobehuk:AL_dropbear_ed25519
Closed

Arch Linux: describe ed25519 support#131
ejiektpobehuk wants to merge 2 commits intoopenzfs:masterfrom
ejiektpobehuk:AL_dropbear_ed25519

Conversation

@ejiektpobehuk
Copy link
Contributor

@ejiektpobehuk ejiektpobehuk commented Mar 7, 2021

ed25519 support: mkj/dropbear#91

@rlaager rlaager assigned rlaager and unassigned rlaager Mar 7, 2021
@rlaager
Copy link
Member

rlaager commented Mar 7, 2021

@ejiek Could you add a Signed-off-by to the commit, please?

@ne9z Is this support now available in Arch?

@ghost
Copy link

ghost commented Mar 8, 2021

@ejiek Have you tested this though? Last time I checked, mkinitcpio-dropbear hook complains a lot for not being able to read ed25519 host key generated with ssh-keygen -Am pem. For now I would just stick with good ol' RSA 3072 keys.

@ejiektpobehuk
Copy link
Contributor Author

ejiektpobehuk commented Mar 9, 2021

@ne9z @rlaager this setup works a fresh install of AL (as of 07.03.2021).

I've experienced no problems with ed25519 key in /etc/dropbear/root_key.
As for host keys dropbearconvert openssh dropbear /etc/ssh/ssh_host_ed25519_key dropbear_ed25519_host_key has succesfully converted a host key, but it's not done by mkinitcpio-dropbear hook yet.

@ejiektpobehuk ejiektpobehuk force-pushed the AL_dropbear_ed25519 branch 2 times, most recently from 2916fdc to 36efa7f Compare March 9, 2021 10:15
@ghost
Copy link

ghost commented Mar 9, 2021

Thanks for testing this out. So it means that ed25519 still does not work with mkinitcpio-dropbear without manually converting the host key first.

Please add this instruction and note to the pull request.

@ejiektpobehuk
Copy link
Contributor Author

ejiektpobehuk commented Mar 23, 2021

I'd argue that this PR was about /etc/dropbear/root_key not a host key.
But I think that it can be expanded to ed25519 support =]

@ejiektpobehuk ejiektpobehuk changed the title Arch Linux: Remove DropBear key limitation note Arch Linux: describe ed25519 support Mar 23, 2021
@ghost
Copy link

ghost commented Mar 23, 2021

Latest commit looks good to me. However Arch guide has significantly changed since this notice was proposed. "This branch has conflicts that must be resolved"

Maybe rebase on the latest version?

@ejiektpobehuk
Arch Linux: Remove DropBear key limitation note
af93344 
ed25519 support: mkj/dropbear#91

Signed-off-by: Vlad Petrov <ejiek@mail.ru>
@ejiektpobehuk
Copy link
Contributor Author

ejiektpobehuk commented Mar 23, 2021

Done!

I'm not sure how correct it is in English but I've added two commas to make reading a bit easier.

Thanks for all the support during this PR!

@ghost ghost mentioned this pull request Mar 23, 2021
Merged
@ghost
Copy link

ghost commented Mar 23, 2021

I've opened a pull request in your repo to address the issues.

@ejiek
more concise wording; fix rst formatting
c623404 
Signed-off-by: Maurice Zhou <ja@apvc.uk>
ghost
ghost approved these changes Mar 24, 2021
View reviewed changes
@ghost
Copy link

ghost commented Mar 24, 2021

@rlaager I think it's ready for merging.

@rlaager rlaager closed this in 8a996a1 Mar 24, 2021
wommy pushed a commit to wommy/openzfs-docs that referenced this pull request Nov 11, 2025
@ejiektpobehuk @rlaager
Arch Linux: Remove DropBear key limitation note
dc9d236 
ed25519 support: mkj/dropbear#91

Closes openzfs#131

Signed-off-by: Vlad Petrov <ejiek@mail.ru>
Signed-off-by: Maurice Zhou <ja@apvc.uk>
[more concise wording; fix rst formatting]
Signed-off-by: Richard Laager <rlaager@wiktel.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer
Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@ejiektpobehuk @rlaager