Bug#483838: openssh-server: odd RSA key sizes fail cross-architecture
Package: openssh-server
Version: 1:4.7p1-12
Severity: normal
A 4697-bit RSA key from 32bit x86 connecting to an armel machine fails
with the following message:
May 31 14:52:08 yatima sshd[16517]: error: RSA_public_decrypt failed: error:0407006A:lib(4):func(112):reason(106)
A 4696-bit RSA key from the armel machine to a 64 bit x86 also fails, with
the remote server uttering the same message.
14:55:44$ openssl errstr 0407006A
error:0407006A:rsa routines:RSA_padding_check_PKCS1_type_1:block type is not 01
(no idea what that means)
I've just generated one using a default keysize on the 32bit x86 machine
and had no complaints connecting to the armel box.
I'll do a bit more investigation later.
-- System Information:
Debian Release: lenny/sid
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: armel (armv5tel)
Kernel: Linux 2.6.24-1-iop32x
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/bash
Versions of packages openssh-server depends on:
ii adduser 3.107 add and remove users and groups
ii debconf [debconf-2.0] 1.5.21 Debian configuration management sy
ii dpkg 1.14.19 package maintenance system for Deb
ii libc6 2.7-10 GNU C Library: Shared libraries
ii libcomerr2 1.40.8-2 common error description library
ii libgcc1 1:4.3.0-4 GCC support library
ii libkrb53 1.6.dfsg.3-2 MIT Kerberos runtime libraries
ii libpam-modules 0.99.7.1-6 Pluggable Authentication Modules f
ii libpam-runtime 0.99.7.1-6 Runtime support for the PAM librar
ii libpam0g 0.99.7.1-6 Pluggable Authentication Modules l
ii libselinux1 2.0.59-1 SELinux shared libraries
ii libssl0.9.8 0.9.8g-10 SSL shared libraries
ii libwrap0 7.6.q-15 Wietse Venema's TCP wrappers libra
ii lsb-base 3.2-12 Linux Standard Base 3.2 init scrip
ii openssh-blacklist 0.4.1 list of default blacklisted OpenSS
ii openssh-client 1:4.7p1-12 secure shell client, an rlogin/rsh
ii zlib1g 1:1.2.3.3.dfsg-12 compression library - runtime
Reply to: