Opened 4 years ago

Closed 20 months ago

Last modified 4 months ago

#12660 closed bug (fixed)

OpenSSH regression

Reported by: miqlas Owned by: nobody
Priority: normal Milestone: R1/beta2
Component: - General Version: R1/Development
Keywords: ssh, sshd Cc:
Blocked By: Blocking:
Platform: All

Description (last modified by korli)

The actual Haiku gcc2h have a regression in OpenSSH. During a vanilla gcc2h install it can't generate the ssh keys:

"Generating public/private rsa1 key pair. Saving key "/boot/system/settings/ssh/ssh_host_key" failed: unknown or unsupported key type"

The login through SSH impossible.

Attachments (3)

openssh_log_hrev50095_gcc2h_22022012.txt (2.3 KB ) - added by miqlas 4 years ago.
sshd_strace_hrev50095_gcc2h_22022012.txt (17.9 KB ) - added by miqlas 4 years ago.
ssh_strace_hrev50095_gcc2h_22022012.txt (41.1 KB ) - added by miqlas 4 years ago.

Download all attachments as: .zip

Change History (11)

comment:1 by korli, 4 years ago

Description: modified (diff)
Summary: OpenSSH regessionOpenSSH regression

comment:3 by miqlas, 4 years ago

Log from up-to date Haiku. I deletedd all the keyfiles, and ran the /boot/system/boot/post-install/ script to regenerate them. It can't generate the rsa1 keys.

comment:4 by miqlas, 4 years ago

Tried to login into Haiku. Everything was set up like here: See the attached strace output.

$ ssh user@
The authenticity of host ' (' can't be established.
ECDSA key fingerprint is SHA256:/+dRDMqe7/rhhSgX5SHWRugjL2Bmt3pYowyeUk5+xkU.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added '' (ECDSA) to the list of known hosts.
user@'s password:
Permission denied, please try again.
user@'s password:
Permission denied, please try again.
user@'s password:
Connection closed by
Last edited 4 years ago by miqlas (previous) (diff)

comment:5 by miqlas, 4 years ago

It is actually not a regression, but a feature in OpenSSH7.

The config file in /system/settings/ssh/sshd_config contains a line: #PermitRootLogin prohibit-password

Though it commented out, it doesn't let the root user login with password. To revert to the OpenSSH6 behavior, we need to change that line to the following:

PermitRootLogin yes #(notice the removed hashmark at the beginning!)

After a reboot it works, tested with the latest nightly gcc2h.

I think, we should update the page, as it outdated (the default install have sshd user), to contain this information.

I need to say, i haven't tested the key-based login, but PulkoMandy told: it works.

You can close this ticket now. Thank you guys!

comment:6 by pulkomandy, 4 years ago

Milestone: R1/beta1R1

I'm leaving this open because the use of that option is maybe a bit confusing in Haiku's case (it is not expected that the default user is root). If we decide to do nothing about it, at least the docs should be updated.

comment:7 by waddlesplash, 20 months ago

Resolution: fixed
Status: newclosed

The docs have since been updated.

comment:8 by nielx, 4 months ago

Milestone: R1R1/beta2

Assign tickets with status=closed and resolution=fixed within the R1/beta2 development window to the R1/beta2 Milestone

Note: See TracTickets for help on using tickets.