OpenWrt/LEDE Project

  • Status Unconfirmed
  • Percent Complete
  • Task Type Bug Report
  • Category Base system
  • Assigned To No-one
  • Operating System All
  • Severity Low
  • Priority Very Low
  • Reported Version openwrt-19.07
  • Due in Version Undecided
  • Due Date Undecided
  • Private
Attached to Project: OpenWrt/LEDE Project
Opened by Lothia - 14.11.2020

FS#3452 - can't conntect to dropbear using OpenSSH 8.4

Can’t connect to dropbear after upgrading to Fedora 33

Using: OpenSSH_8.4p1, OpenSSL 1.1.1h FIPS 22 Sep 2020

Adding “PubkeyAcceptedKeyTypes=+ssh-dss” to $.ssh/config Hosts section solves the issue.

May be related to this:

Dominik Mierzejewski commented on 18.01.2021 10:37

This is due to revised security policies in Fedora 33+. See Fedora bug 1884920 and this Reddit thread . The solution would be to enable ED25519 or at least ECSDA key support in dropbear. And the actual work-around (Fedora-side) is to add this snippet to ~/.ssh/config:

Host openwrt-device.localdomain
        PubkeyAcceptedKeyTypes +ssh-rsa
Jerome Charaoui commented on 24.02.2021 00:32

Support for ed25519 has been merged in Dropbear for some time now:

The solution is to update the Dropbear package shipped by OpenWrt. The version currently available is nearly two years old...


Available keyboard shortcuts


Task Details

Task Editing