openssh unix dev - Mar 2002 - [Bug 132] connects to 1.2.2? vintage sshd sometimes gets "Server lies" about host key size off by 1 bit

http://bugzilla.mindrot.org/show_bug.cgi?id=132





------- Additional Comments From dwd at bell-labs.com  2002-03-02 02:29 -------
Created an attachment (id=30)
Patch against CVS of March 1, 2003




------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

http://bugzilla.mindrot.org/show_bug.cgi?id=132





------- Additional Comments From markus at openbsd.org  2002-03-02 08:08 -------
what is this for? the warning is in ssh intentionally.

the error has nothing to do with the software version
of the server, it's a problem with the key.



------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

http://bugzilla.mindrot.org/show_bug.cgi?id=132





------- Additional Comments From dwd at bell-labs.com  2002-03-02 08:44 -------
Since this is a normal case, I don't think the warning belongs
there in the client.  I have many users who have no control
over what the remote end is, and the warning will mess up their
scripts.  On the server side, it would be unacceptable to 
regenerate SSH1 host keys when I upgrade from old SSH to OpenSSH,
and some of those old keys are an odd size and the old SSH client
chokes on them if we don't round them up to an even number like
the old SSH server did.  Compat.c already simulates many old bugs
so I don't think one more would hurt.





------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

http://bugzilla.mindrot.org/show_bug.cgi?id=132





------- Additional Comments From markus at openbsd.org  2002-03-02 10:06 -------
but the warning is for the case you try to disable.

and it does not depend on a specific versions of the sshd.

another option would be: change the log() to verbose()
so it's not in the default



------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

http://bugzilla.mindrot.org/show_bug.cgi?id=132





------- Additional Comments From dwd at bell-labs.com  2002-03-05 03:33 -------
That would be fine with me to have it be only in verbose mode.

However, SSH_BUG_SERVERLIESSIZE is still needed because the old
clients require key sizes to be reported as an even number of
bits, and we wouldn't want to emulate that bug for newer clients.
You say that it doesn't depend on the version of sshd and I assume
that extends to the ssh client, but I think it's fair to only 
accommodate the clients known to be picky and which are still
pretty commonly found.

I will attach a new suggested patch.  I have added a comment
explaining the known scenario which the warning is for so people
who look will know that it is intentionally for this case.



------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

http://bugzilla.mindrot.org/show_bug.cgi?id=132





------- Additional Comments From dwd at bell-labs.com  2002-03-05 03:35 -------
Created an attachment (id=31)
New patch changing server lies log()s to verbose()s




------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

http://bugzilla.mindrot.org/show_bug.cgi?id=132

stevesk at pobox.com changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
         AssignedTo|openssh-unix-dev at mindrot.org|markus at openbsd.org



------- Additional Comments From stevesk at pobox.com  2002-03-31 05:46 -------
assign to markus



------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.