#12660 closed bug (fixed)
OpenSSH regression
| Reported by: | miqlas | Owned by: | nobody |
|---|---|---|---|
| Priority: | normal | Milestone: | R1/beta2 |
| Component: | - General | Version: | R1/Development |
| Keywords: | ssh, sshd | Cc: | |
| Blocked By: | Blocking: | ||
| Platform: | All |
Description (last modified by )
The actual Haiku gcc2h have a regression in OpenSSH. During a vanilla gcc2h install it can't generate the ssh keys:
"Generating public/private rsa1 key pair. Saving key "/boot/system/settings/ssh/ssh_host_key" failed: unknown or unsupported key type"
The login through SSH impossible.
Attachments (3)
Change History (11)
comment:1 by , 8 years ago
| Description: | modified (diff) |
|---|---|
| Summary: | OpenSSH regession → OpenSSH regression |
comment:2 by , 8 years ago
comment:3 by , 8 years ago
Log from up-to date Haiku. I deletedd all the keyfiles, and ran the /boot/system/boot/post-install/sshd_keymaker.sh script to regenerate them. It can't generate the rsa1 keys.
by , 8 years ago
| Attachment: | openssh_log_hrev50095_gcc2h_22022012.txt added |
|---|
comment:4 by , 8 years ago
Tried to login into Haiku. Everything was set up like here: https://www.haiku-os.org/guides/daily-tasks/netservices See the attached strace output.
$ ssh user@192.168.178.129 The authenticity of host '192.168.178.129 (192.168.178.129)' can't be established. ECDSA key fingerprint is SHA256:/+dRDMqe7/rhhSgX5SHWRugjL2Bmt3pYowyeUk5+xkU. Are you sure you want to continue connecting (yes/no)? yes Warning: Permanently added '192.168.178.129' (ECDSA) to the list of known hosts. user@192.168.178.129's password: Permission denied, please try again. user@192.168.178.129's password: Permission denied, please try again. user@192.168.178.129's password: Connection closed by 192.168.178.129
by , 8 years ago
| Attachment: | sshd_strace_hrev50095_gcc2h_22022012.txt added |
|---|
by , 8 years ago
| Attachment: | ssh_strace_hrev50095_gcc2h_22022012.txt added |
|---|
comment:5 by , 8 years ago
It is actually not a regression, but a feature in OpenSSH7.
The config file in /system/settings/ssh/sshd_config contains a line: #PermitRootLogin prohibit-password
Though it commented out, it doesn't let the root user login with password. To revert to the OpenSSH6 behavior, we need to change that line to the following:
PermitRootLogin yes #(notice the removed hashmark at the beginning!)
After a reboot it works, tested with the latest nightly gcc2h.
I think, we should update the https://www.haiku-os.org/guides/daily-tasks/netservices page, as it outdated (the default install have sshd user), to contain this information.
I need to say, i haven't tested the key-based login, but PulkoMandy told: it works.
You can close this ticket now. Thank you guys!
comment:6 by , 8 years ago
| Milestone: | R1/beta1 → R1 |
|---|
I'm leaving this open because the use of that option is maybe a bit confusing in Haiku's case (it is not expected that the default user is root). If we decide to do nothing about it, at least the docs should be updated.
comment:7 by , 5 years ago
| Resolution: | → fixed |
|---|---|
| Status: | new → closed |
The docs have since been updated.
comment:8 by , 4 years ago
| Milestone: | R1 → R1/beta2 |
|---|
Assign tickets with status=closed and resolution=fixed within the R1/beta2 development window to the R1/beta2 Milestone
We are not alone with this problem: https://lists.debian.org/debian-ssh/2016/01/msg00057.html