Due to legal reasons, unbound was not allowed to be compiled with ghost support. It is compiled using --disable-gost Some parts of ECC are now being allowed into fedora, but it is unclear whether GOST is an allowed ECC algorithm. unbound itself provides not ECC - it depends on openssl to provode this. See also bug#1019390
This bug appears to have been reported against 'rawhide' during the Fedora 22 development cycle. Changing version to '22'. More information and reason for this action is here: https://fedoraproject.org/wiki/Fedora_Program_Management/HouseKeeping/Fedora22
(In reply to Paul Wouters from comment #0) > Due to legal reasons, unbound was not allowed to be compiled with ghost > support. It is compiled using --disable-gost > > Some parts of ECC are now being allowed into fedora, but it is unclear > whether GOST is an allowed ECC algorithm. Please note that ldns is compiled with GOST.
I've rebuild ldns to enable ecdsa but disable gost. note that ldns doesn't itself do GOST crypto, it uses openssl for that which never has contained gost code (I hope)