Ubuntu
openssh package

Bug #1534792
Comment #5

Comment 5 for bug 1534792

Revision history for this message

Douglas Sikora (doug-s1k0ra) wrote on 2016-01-20: Re: [Bug 1534792] Re: unable to connect or load identity file

Thanks Colin and that is a response that makes sense. I sent the stack
trace because i was asked to, i want asked for a vvv.
On Jan 20, 2016 6:20 AM, "Colin Watson" <email address hidden> wrote:

> The key_load_public bits are a red herring; it loads id_rsa(.pub)
> successfully (you can tell because it says "type 1", not "type -1"), and
> the immediately-subsequent error pertains to id_rsa-cert(.pub) instead.
> So it's successfully loaded the available identity file.
>
> I think the next steps here should have been:
>
> * increase debugging to -vvv rather than just -vv (no point in messing
> about, might as well have the maximum debugging level)
> * see if there's any useful logging at the server end if you have root
> access to it, probably in /var/log/auth.log
>
> However, it seems that the network fix was sufficient? I would say that
> a hang is a fairly typical response to a misconfigured network. ssh's
> debugging output is primarily intended for developers, and I don't think
> we (or upstream) would generally consider it a bug that it may require
> reading the source code to determine what it means.
>
> ** Summary changed:
>
> - unable to connect or load identity file
> + unable to connect
>
> --
> You received this bug notification because you are subscribed to the bug
> report.
> https://bugs.launchpad.net/bugs/1534792
>
> Title:
> unable to connect
>
> Status in openssh package in Ubuntu:
> Incomplete
>
> Bug description:
> 2 bugs are similar but not the same at
> https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1522190 and
> https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1497263
>
>
> host A ubuntu 14.04.3 -- running ssh-server
>
>
> client B and C
>
> client B 14.04.3 can connect no problem with ssh keys only to host A
> (to me this means openssh-server is fine on Host A)
>
>
> Client C 15.10 cannot ssh to host A, openssh cannot or refuses to
> load identity files; output of ssh -vvv below
>
> $ ssh ubuntu@172.27.20.1 -vv
> OpenSSH_6.9p1 Ubuntu-2, OpenSSL 1.0.2d 9 Jul 2015
> debug1: Reading configuration data /etc/ssh/ssh_config
> debug1: /etc/ssh/ssh_config line 19: Applying options for *
> debug2: ssh_connect: needpriv 0
> debug1: Connecting to 172.27.20.1 [172.27.20.1] port 22.
> debug1: Connection established.
> debug1: identity file /home/dsikora/.ssh/id_rsa type 1
> debug1: key_load_public: No such file or directory
> debug1: identity file /home/dsikora/.ssh/id_rsa-cert type -1
> debug1: key_load_public: No such file or directory
> debug1: identity file /home/dsikora/.ssh/id_dsa type -1
> debug1: key_load_public: No such file or directory
> debug1: identity file /home/dsikora/.ssh/id_dsa-cert type -1
> debug1: key_load_public: No such file or directory
> debug1: identity file /home/dsikora/.ssh/id_ecdsa type -1
> debug1: key_load_public: No such file or directory
> debug1: identity file /home/dsikora/.ssh/id_ecdsa-cert type -1
> debug1: key_load_public: No such file or directory
> debug1: identity file /home/dsikora/.ssh/id_ed25519 type -1
> debug1: key_load_public: No such file or directory
> debug1: identity file /home/dsikora/.ssh/id_ed25519-cert type -1
> debug1: Enabling compatibility mode for protocol 2.0
> debug1: Local version string SSH-2.0-OpenSSH_6.9p1 Ubuntu-2
>
>
> ###at this point connection hangs -- sometimes i get back
> "ssh_exchange_identification: read: Connection reset by peer"
>
>
> permissions on files look OK to me:
>
> $ ls -all .ssh
> total 24
> drwx------ 2 user user 4096 Jan 15 12:53 .
> drwxr-xr-x 26 user user 4096 Jan 15 12:13 ..
> -rw-r--r-- 1 user user 396 Jan 15 12:53 authorized_keys
> -rw------- 1 user user 1679 Jan 14 16:15 id_rsa
> -rw-r--r-- 1 user user 395 Jan 14 16:15 id_rsa.pub
> -rw-r--r-- 1 user user 1094 Jan 15 12:18 known_hosts
>
> and home dir :
> $ ls -all /home
> drwxr-xr-x 26 user user 4096 Jan 15 12:13 user
>
>
> actual username replaced with "user"
>
>
> ssh versions on Client
>
>
> $ dpkg -l | grep ssh
> ii libssh-4:amd64 0.6.3-3ubuntu3
> amd64 tiny C SSH library (OpenSSL flavor)
> ii openssh-client 1:6.9p1-2
> amd64 secure shell (SSH) client, for secure
> access to remote machines
> ii openssh-server 1:6.9p1-2
> amd64 secure shell (SSH) server, for secure
> access from remote machines
> ii openssh-sftp-server 1:6.9p1-2
> amd64 secure shell (SSH) sftp server module, for
> SFTP access from remote machines
> ii ssh-askpass-gnome 1:6.9p1-2
> amd64 interactive X program to prompt users for
> a passphrase for ssh-add
> ii ssh-import-id 4.5-0ubuntu1
> all securely retrieve an SSH public key and
> install it locally
>
> please advise.
>
> thanks
>
> To manage notifications about this bug go to:
>
> https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1534792/+subscriptions
>

Thanks Colin and that is a response that makes sense. I sent the stack
trace because i was asked to, i want asked for a vvv.
On Jan 20, 2016 6:20 AM, "Colin Watson" <cjwatson@canonical.com> wrote:

> The key_load_public bits are a red herring; it loads id_rsa(.pub)
> successfully (you can tell because it says "type 1", not "type -1"), and
> the immediately-subsequent error pertains to id_rsa-cert(.pub) instead.
> So it's successfully loaded the available identity file.
>
> I think the next steps here should have been:
>
>  * increase debugging to -vvv rather than just -vv (no point in messing
> about, might as well have the maximum debugging level)
>  * see if there's any useful logging at the server end if you have root
> access to it, probably in /var/log/auth.log
>
> However, it seems that the network fix was sufficient?  I would say that
> a hang is a fairly typical response to a misconfigured network.  ssh's
> debugging output is primarily intended for developers, and I don't think
> we (or upstream) would generally consider it a bug that it may require
> reading the source code to determine what it means.
>
> ** Summary changed:
>
> - unable to connect or load identity file
> + unable to connect
>
> --
> You received this bug notification because you are subscribed to the bug
> report.
> https://bugs.launchpad.net/bugs/1534792
>
> Title:
>   unable to connect
>
> Status in openssh package in Ubuntu:
>   Incomplete
>
> Bug description:
>   2 bugs are similar but not the same  at
>   https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1522190  and
>   https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1497263
>
>
>   host A     ubuntu 14.04.3   -- running ssh-server
>
>
>   client B and C
>
>   client B 14.04.3  can connect no problem with ssh keys only to host A
>   (to me this means openssh-server is fine on Host A)
>
>
>   Client C  15.10   cannot ssh to host A,  openssh cannot or refuses to
> load identity files;  output of ssh -vvv below
>
>   $ ssh  ubuntu@172.27.20.1 -vv
>   OpenSSH_6.9p1 Ubuntu-2, OpenSSL 1.0.2d 9 Jul 2015
>   debug1: Reading configuration data /etc/ssh/ssh_config
>   debug1: /etc/ssh/ssh_config line 19: Applying options for *
>   debug2: ssh_connect: needpriv 0
>   debug1: Connecting to 172.27.20.1 [172.27.20.1] port 22.
>   debug1: Connection established.
>   debug1: identity file /home/dsikora/.ssh/id_rsa type 1
>   debug1: key_load_public: No such file or directory
>   debug1: identity file /home/dsikora/.ssh/id_rsa-cert type -1
>   debug1: key_load_public: No such file or directory
>   debug1: identity file /home/dsikora/.ssh/id_dsa type -1
>   debug1: key_load_public: No such file or directory
>   debug1: identity file /home/dsikora/.ssh/id_dsa-cert type -1
>   debug1: key_load_public: No such file or directory
>   debug1: identity file /home/dsikora/.ssh/id_ecdsa type -1
>   debug1: key_load_public: No such file or directory
>   debug1: identity file /home/dsikora/.ssh/id_ecdsa-cert type -1
>   debug1: key_load_public: No such file or directory
>   debug1: identity file /home/dsikora/.ssh/id_ed25519 type -1
>   debug1: key_load_public: No such file or directory
>   debug1: identity file /home/dsikora/.ssh/id_ed25519-cert type -1
>   debug1: Enabling compatibility mode for protocol 2.0
>   debug1: Local version string SSH-2.0-OpenSSH_6.9p1 Ubuntu-2
>
>
>   ###at this point connection hangs -- sometimes i get back
> "ssh_exchange_identification: read: Connection reset by peer"
>
>
>   permissions on files look OK to me:
>
>   $ ls -all .ssh
>   total 24
>   drwx------  2 user user 4096 Jan 15 12:53 .
>   drwxr-xr-x 26 user user 4096 Jan 15 12:13 ..
>   -rw-r--r--  1 user user  396 Jan 15 12:53 authorized_keys
>   -rw-------  1 user user 1679 Jan 14 16:15 id_rsa
>   -rw-r--r--  1 user user  395 Jan 14 16:15 id_rsa.pub
>   -rw-r--r--  1 user user  1094 Jan 15 12:18 known_hosts
>
>   and home dir :
>   $ ls -all /home
>   drwxr-xr-x 26 user user  4096 Jan 15 12:13 user
>
>
>   actual username replaced with "user"
>
>
>   ssh versions on Client
>
>
>   $ dpkg -l | grep ssh
>   ii  libssh-4:amd64                                0.6.3-3ubuntu3
>                      amd64        tiny C SSH library (OpenSSL flavor)
>   ii  openssh-client                                1:6.9p1-2
>                     amd64        secure shell (SSH) client, for secure
> access to remote machines
>   ii  openssh-server                                1:6.9p1-2
>                     amd64        secure shell (SSH) server, for secure
> access from remote machines
>   ii  openssh-sftp-server                           1:6.9p1-2
>                     amd64        secure shell (SSH) sftp server module, for
> SFTP access from remote machines
>   ii  ssh-askpass-gnome                             1:6.9p1-2
>                     amd64        interactive X program to prompt users for
> a passphrase for ssh-add
>   ii  ssh-import-id                                 4.5-0ubuntu1
>                      all          securely retrieve an SSH public key and
> install it locally
>
>   please advise.
>
>   thanks
>
> To manage notifications about this bug go to:
>
> https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1534792/+subscriptions
>

Ubuntuopenssh package

Comment 5 for bug 1534792

Ubuntu
openssh package