Phil Stracchino wrote: > > On Thu, Sep 27, 2001 at 02:26:14PM -0700, Phil Stracchino wrote: > > I've just compiled and installed openssh-2.9.9p2 (compiled against > > openssl-0.9.6b using gcc-3.0.0) on a Slackware 7-based Linux machine > > (kernel 2.4.6ac2). The previously installed version was 2.9p2, compiled > > against openssl-0.9.6a, also with gcc-3.0.0, but with a different build of > > gcc-3.0.0. > > > > Everything seems to work fine except for one problem: passphrase matching > > for ssh2 keys *always* fails. I've run ssh-add under gdb several times > > trying to see what's going wrong, so far without learning anything > > particularly enlightening. > > I have finally managed to isolate this down to the following: For SSH2 > DSA and RSA keys, the OpenSSL PEM_read_PrivateKey() macro, called from > authfile.c line 448: > > pk = PEM_read_PrivateKey(fp, NULL, NULL, (char *)passphrase); > > is consistently failing and always returns NULL, whereas it should be > returning a EVP_PKEY struct with pk->type containing either EVP_PKEY_RSA > or EVP_PKEY_DSA. As far as I can see from the OpenSSL code, this means > that BIO_new(BIO_s_file()) has to be returning NULL, but that's as far as > I can figure it out; the internals of OpenSSL are utterly impenetrable to > me. > > Any suggestions, anyone? I think I've taken this problem about as far as > I can diagnose it myself. >
Yes, read the FAQ. If that doesn't solve your problem it will at least tell you how to give more complete error information. Steve. -- Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/ Personal Email: [EMAIL PROTECTED] Senior crypto engineer, Celo Communications: http://www.celocom.com/ Core developer of the OpenSSL project: http://www.openssl.org/ Business Email: [EMAIL PROTECTED] PGP key: via homepage. ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
