[Buildroot] [dropbear] fail ssh conection with Passwords encoding SHA-256 or SHA-512
Peter Korsgaard
peter at korsgaard.com
Fri Feb 26 15:33:21 UTC 2016
>>>>> "Óscar" == Óscar Gómez Fuente <oscargomezf at gmail.com> writes:
> Hi,
> I'm new in buldroot and I'm building a raspberry 2 platform. I've based on
> raspberrypi2_defconfig configuration. But I've changed two things:
> 1º.- I've added dropbear to add ssh functionality.
> Everything works fine and I can connect to my raspberry by ssh (System
> password encoding md5). The problem is when I've changed the password
> encoding from md5 to SHA-256 or SHA-512. When I've tried to make an ssh
> conection from a PC to my raspberry pi 2 the access fail:
> root at 192.168.10.105's password:
> Permission denied, please try again.
The problem is that uClibc doesn't have support for the sha256/512
ciphers by default, so dropbear cannot authenticate you. It happens to
work when you login through serial as the busybox login program uses
built in password handling functions (and we have code to enable the
sha256/512 routines when enabled in buildroot).
I guess we need to do the same for uClibc (or just unconditionally
enable it). In the mean time you can use glibc instead which does
support it (make sure you do a clean build whenever you change toolchain
options).
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list