replace dropbear with openssh-server #5

New Issue

Closed

opened 2023-01-24 05:55:50 +01:00 by PeterSurda · 3 comments

PeterSurda commented 2023-01-24 05:55:50 +01:00

Owner

Copy Link

dropbear doesn't support ed25519 keys for example

dropbear doesn't support ed25519 keys for example

lee.miller was assigned by PeterSurda 2023-01-24 07:24:41 +01:00

lee.miller commented 2023-01-24 23:40:46 +01:00

Collaborator

Copy Link

make menuconfig disagrees:

  │ ┌─────────────────────────────────────────────────────────────────────┐ │  
  │ │    [*] Curve25519 support                                           │ │  
  │ │    [ ] Elliptic curve cryptography (ECC)                            │ │  
  │ │    [*] Ed25519 support                                              │ │  
  │ │    [*] Chacha20-Poly1305 support                                    │ │  
  │ │    [ ] Enable compression                                           │ │  
  │ │    [*] Build dropbear with dbclient                                 │ │  
  │ │    [*]   Enable agent forwarding in dbclient                        │ │  
  │ │    [*] Build dropbear with scp                                      │ │  
  │ │    [ ] Enable askpass helper support                                │ │  
  │ │    [*] Enable agent forwarding                                      │ │  

$ grep DROPBE .config
CONFIG_DROPBEAR_CURVE25519=y
# CONFIG_DROPBEAR_ECC is not set
CONFIG_DROPBEAR_ED25519=y
...

`make menuconfig` disagrees: ``` │ ┌─────────────────────────────────────────────────────────────────────┐ │ │ │ [*] Curve25519 support │ │ │ │ [ ] Elliptic curve cryptography (ECC) │ │ │ │ [*] Ed25519 support │ │ │ │ [*] Chacha20-Poly1305 support │ │ │ │ [ ] Enable compression │ │ │ │ [*] Build dropbear with dbclient │ │ │ │ [*] Enable agent forwarding in dbclient │ │ │ │ [*] Build dropbear with scp │ │ │ │ [ ] Enable askpass helper support │ │ │ │ [*] Enable agent forwarding │ │ ``` ``` $ grep DROPBE .config CONFIG_DROPBEAR_CURVE25519=y # CONFIG_DROPBEAR_ECC is not set CONFIG_DROPBEAR_ED25519=y ... ```

lee.miller referenced this issue 2023-01-25 10:09:13 +01:00

Try to replace dropbear by openssh-server using imagebuilder #9

PeterSurda commented 2023-02-14 12:01:05 +01:00

Author

Owner

Copy Link

regarding ed25519, maybe it's been upgraded since I last used it, I remember it didn't work on older versions of openwrt. maybe I should retest it and revert to dropbear then.

regarding ed25519, maybe it's been upgraded since I last used it, I remember it didn't work on older versions of openwrt. maybe I should retest it and revert to dropbear then.

PeterSurda self-assigned this 2023-02-14 12:01:13 +01:00

lee.miller closed this issue 2023-02-23 16:50:49 +01:00

lee.miller commented 2023-02-23 21:56:19 +01:00

Collaborator

Copy Link

In 85c081d you might remove DISABLED_SERVICES="dropbear" instead of /sbin/service dropbear enable.

In 85c081d you might remove [DISABLED_SERVICES="dropbear"](https://git.bitmessage.org/Sysdeploy/openwrt/src/branch/main/.buildbot/openwrt/build.sh#L96) instead of `/sbin/service dropbear enable`.

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

23.05.3

kernel-test

collectd-build-debug

kmod-nvme

No results found.

Labels

Clear labels   

bug

Something is not working

  

duplicate

This issue or pull request already exists

  

enhancement

New feature

  

help wanted

Need some help

  

invalid

Something is wrong

  

question

More information is needed

  

wontfix

This won't be fixed

No Label

bug

duplicate

enhancement

help wanted

invalid

question

wontfix

Milestone

Clear milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

No Assignees

lee.miller

PeterSurda

2 Participants

Notifications

Subscribe

Due Date

The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: Sysdeploy/openwrt#5

No description provided.