CVSROOT: /cvs
Module name: src
Changes by: [email protected] 2026/06/13 21:59:34
Modified files:
usr.bin/ssh : Makefile.inc authfd.c authfile.c crypto_api.h
ed25519-openssl.c kexmlkem768x25519.c
pathnames.h servconf.c ssh-keygen.c
ssh-keyscan.c ssh-keysign.c ssh.c sshconnect.c
sshd-auth.c sshd-session.c sshd.c ssherr.c
ssherr.h sshkey.c sshkey.h
Added files:
usr.bin/ssh : libcrux-mlkem-mldsa.c libcrux_internal.h
mlkem_mldsa.sh ssh-mldsa-eddsa.c
Removed files:
usr.bin/ssh : libcrux_mlkem768_sha3.h mlkem768.sh
Log message:
Add experimental support for a composite post-quantum signature
scheme that combines ML-DSA 44 and Ed25519 using the construction
specified in draft-ietf-lamps-pq-composite-sigs. There's also an
early draft documenting use of the integration of this scheme into
SSH as draft-miller-sshm-mldsa44-ed25519-composite-sigs
This scheme is not enabled by default. To you use, you'll need
to add it to HostKeyAlgorithms, PubkeyAcceptedAlgorithms, etc.
Keys may be generated using "ssh-keygen -t mldsa44-ed25519".
The ML-DSA implementation comes from libcrux. Thanks to
Jonas Schneider-Bensch and Jonathan Protzenko for their work to
make this available.
Consensus is that it's time to get this in to allow people to
experiment with it.
feedback markus@ tb@ logan@ deraadt@
