[Bug 2239] New: ssh-keygen cannot handle Linux with 64 char long hostname

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Wed May 7 04:08:01 EST 2014


            Bug ID: 2239
           Summary: ssh-keygen cannot handle Linux with 64 char long
           Product: Portable OpenSSH
           Version: 6.6p1
          Hardware: All
                OS: Linux
            Status: NEW
          Severity: minor
          Priority: P5
         Component: ssh-keygen
          Assignee: unassigned-bugs at mindrot.org
          Reporter: milos.vyletel at gmail.com

Created attachment 2434
  --> https://bugzilla.mindrot.org/attachment.cgi?id=2434&action=edit

I've tried to set set hostname on my linux box to 64 characters which
is the maximum supported by Linux. This works fine but breaks
ssh-keygen (and possibly other openssh tools) because Linux sets
MAXHOSTNAMELEN to 64 which does not account for trailing zero.

I've tested this on 
OEL 6.5 (2.6.32-431.3.1.el6 kernel) and openssh-5.3p1-94.el6.x86_64
OEL 6.5 (2.6.32-431.3.1.el6 kernel) and OpenSSH_6.6p1
Fedora 20 (3.15.0-rc2+ kernel) and openssh-6.4p1-3.fc20.x86_64

The above root cause seems like a intentional design decision in Linux
trailing zero

/usr/include/limits.h:#define _POSIX_HOST_NAME_MAX      255
/usr/include/sys/param.h:#define MAXHOSTNAMELEN 256             /* max
hostname size */

in Linux they are same and is up to program to reserve enough space
/usr/include/bits/local_lim.h:#define HOST_NAME_MAX             64
/usr/include/asm-generic/param.h:#define MAXHOSTNAMELEN 64      /* max
length of hostname */

Here's reproduction

$ hostname
$ hostname | wc -c

OEL 6.5
$ rpm -qf $(which ssh-keygen)
$ ssh-keygen -t rsa
gethostname: File name too long

Fedora 20
$ rpm -qf $(which ssh-keygen)
$ ssh-keygen -t rsa
gethostname: File name too long

OEL 6.5 + attached patch
$ ./ssh -V
OpenSSH_6.6p1, OpenSSL 1.0.1e-fips 11 Feb 2013
$ ./ssh-keygen -t ecdsa
Generating public/private ecdsa key pair.
Enter file in which to save the key (/PATH/.ssh/id_ecdsa):
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /PATH/.ssh/id_ecdsa.
Your public key has been saved in /PATH/.ssh/id_ecdsa.pub.
The key fingerprint is:
mv at xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
The key's randomart image is:
+--[ECDSA  256]---+
|                 |
|                 |
|                 |
|       . . .     |
|      o S . +    |
|       o   o+oo .|
|          .B.+o*.|
|          . =o*oo|
|             E +o|

If you need any additional info please let me know. Attached is a
proposed patch that would redefine MAXHOSTNAMELEN on Linux to 65.

You are receiving this mail because:
You are watching the assignee of the bug.

More information about the openssh-bugs mailing list