BackupGGCode / wl500g

ASUS WL-5xx RT-N1x Oleg's based custom firmware
0 stars 0 forks source link

ECDSA dropbear key #433

Closed GoogleCodeExporter closed 9 years ago

GoogleCodeExporter commented 9 years ago
Hi!
ECDSA hostkey (new type) is missing.
Both in 000-build.patch (path not modified) and in startup script (key not 
generated)

Original issue reported on code.google.com by victor.m...@gmail.com on 15 Jan 2014 at 1:36

GoogleCodeExporter commented 9 years ago
Sorry, I forgot to modify ECDSA_PRIV_FILENAME in options.h 
(dropbear/000-build.patch). Will be done ASAP.

About others/dropbearstart.sh - I'm not sure that we should generate ECDSA keys 
by default. Your opinion?

Original comment by lly.dev on 16 Jan 2014 at 11:06

GoogleCodeExporter commented 9 years ago
ECDSA key is very small. Other advantages listed here: 
https://fogbugz.bitvise.com/default.asp?pg=pgPublicView&sTicket=16673_9pr6ic70
I think ECDSA should be generated.

Original comment by victor.m...@gmail.com on 17 Jan 2014 at 6:59

GoogleCodeExporter commented 9 years ago
Ok, agreed.

The most complex part of others/dropbearstart.sh modification - to generate 
missing key types only.

Original comment by lly.dev on 17 Jan 2014 at 6:37

GoogleCodeExporter commented 9 years ago
Have you tried new -R option to automatically generate hostkeys?

Original comment by victor.m...@gmail.com on 17 Jan 2014 at 9:05

GoogleCodeExporter commented 9 years ago
It assumes that we have persistent storage for keys, but we must to save keys 
in nvram(flashfs)

Original comment by lly.dev on 18 Jan 2014 at 5:59

GoogleCodeExporter commented 9 years ago

Original comment by lly.dev on 24 Jan 2014 at 6:55

GoogleCodeExporter commented 9 years ago
Should be fixed in r5362

Original comment by lly.dev on 25 Jan 2014 at 2:38