Hi Matt, Thanks for your valuable suggestion. Unfortunately my system doesn't have "strace" utility support. I tried dbclient with "-y" option but again its failing again with "write error:broken pipe".
Filesystem has read/write permission. # dbclient -v -y -i dropbear_dss_host_key [email protected] TRACE: enter buf_get_priv_key TRACE: enter dsa_key_free TRACE: enter dsa_key_free: key == NULL TRACE: enter buf_get_dss_pub_key TRACE: leave buf_get_dss_pub_key: success TRACE: leave buf_get_priv_key TRACE: non-flag arg: '[email protected]' TRACE: user='pratiks' host='10.10.10.1' port='22' TRACE: enter connect_remote TRACE: leave connect_remote: sock 4 TRACE: enter session_init TRACE: kexinitialise() TRACE: leave session_init TRACE: enter ident_readln TRACE: leave ident_readln: return 20 TRACE: remoteident: SSH-2.0-OpenSSH_4.3 TRACE: enter encrypt_packet() TRACE: encrypt_packet type is 20 TRACE: enter writemac TRACE: leave writemac TRACE: enter enqueue TRACE: leave enqueue TRACE: leave encrypt_packet() TRACE: DATAALLOWED=0 TRACE: -> KEXINIT TRACE: enter write_packet TRACE: empty queue dequeing TRACE: leave write_packet TRACE: enter read_packet TRACE: enter decrypt_packet TRACE: leave decrypt_packet TRACE: leave read_packet TRACE: enter process_packet TRACE: process_packet: packet type = 20 TRACE: <- KEXINIT TRACE: enter recv_msg_kexinit TRACE: cli_buf_match_algo: diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 TRACE: kex algo diffie-hellman-group1-sha1 TRACE: cli_buf_match_algo: ssh-rsa,ssh-dss TRACE: hostkey algo ssh-dss TRACE: cli_buf_match_algo: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc, [email protected],aes128-ctr,aes192-ctr,aes256-ctr TRACE: enc c2s is aes128-cbc TRACE: cli_buf_match_algo: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc, [email protected],aes128-ctr,aes192-ctr,aes256-ctr TRACE: enc s2c is aes128-cbc TRACE: cli_buf_match_algo: hmac-md5,hmac-sha1,hmac-ripemd160, [email protected],hmac-sha1-96,hmac-md5-96 TRACE: hash c2s is hmac-sha1-96 TRACE: cli_buf_match_algo: hmac-md5,hmac-sha1,hmac-ripemd160, [email protected],hmac-sha1-96,hmac-md5-96 TRACE: hash s2c is hmac-sha1-96 TRACE: cli_buf_match_algo: none,[email protected] TRACE: hash c2s is none TRACE: cli_buf_match_algo: none,[email protected] TRACE: hash s2c is none TRACE: leave recv_msg_kexinit TRACE: leave process_packet TRACE: enter cli_sessionloop TRACE: enter send_msg_kexdh_reply TRACE: enter buf_putmpint TRACE: leave buf_putmpint TRACE: enter encrypt_packet() TRACE: encrypt_packet type is 30 TRACE: enter writemac TRACE: leave writemac TRACE: enter enqueue TRACE: leave enqueue TRACE: leave encrypt_packet() TRACE: leave cli_sessionloop: done with KEXINIT_RCVD TRACE: enter write_packet TRACE: empty queue dequeing TRACE: leave write_packet TRACE: enter cli_sessionloop TRACE: leave cli_sessionloop: kex_state != KEX_NOTHING TRACE: enter read_packet TRACE: enter decrypt_packet TRACE: leave decrypt_packet TRACE: leave read_packet TRACE: enter process_packet TRACE: process_packet: packet type = 31 TRACE: enter recv_msg_kexdh_reply TRACE: type is 2 TRACE: leave buf_getline: success TRACE: checkpubkey: base64_decode success TRACE: good matching key TRACE: enter buf_get_pub_key TRACE: enter dsa_key_free TRACE: enter dsa_key_free: key == NULL TRACE: enter buf_get_dss_pub_key TRACE: leave buf_get_dss_pub_key: success TRACE: leave buf_get_pub_key TRACE: enter buf_put_pub_key TRACE: enter buf_putmpint TRACE: leave buf_putmpint TRACE: enter buf_putmpint TRACE: leave buf_putmpint TRACE: enter buf_putmpint TRACE: leave buf_putmpint TRACE: enter buf_putmpint TRACE: leave buf_putmpint TRACE: leave buf_put_pub_key TRACE: enter buf_putmpint TRACE: leave buf_putmpint TRACE: enter buf_putmpint TRACE: leave buf_putmpint TRACE: enter buf_putmpint TRACE: leave buf_putmpint TRACE: enter buf_verify TRACE: enter buf_dss_verify TRACE: enter sign_key_free TRACE: enter dsa_key_free TRACE: leave dsa_key_free TRACE: leave sign_key_free TRACE: enter send_msg_newkeys TRACE: enter encrypt_packet() TRACE: encrypt_packet type is 21 TRACE: enter writemac TRACE: leave writemac TRACE: enter enqueue TRACE: leave enqueue TRACE: leave encrypt_packet() TRACE: SENTNEWKEYS=1 TRACE: -> MSG_NEWKEYS TRACE: leave send_msg_newkeys TRACE: leave recv_msg_kexdh_init TRACE: leave process_packet TRACE: enter cli_sessionloop TRACE: leave cli_sessionloop: kex_state != KEX_NOTHING TRACE: enter write_packet TRACE: empty queue dequeing TRACE: leave write_packet TRACE: enter read_packet TRACE: enter decrypt_packet TRACE: leave decrypt_packet TRACE: leave read_packet TRACE: enter process_packet TRACE: process_packet: packet type = 21 TRACE: <- MSG_NEWKEYS TRACE: enter recv_msg_newkeys TRACE: while SENTNEWKEYS=1 TRACE: enter gen_new_keys TRACE: enter buf_putmpint TRACE: leave buf_putmpint TRACE: leave gen_new_keys TRACE: kexinitialise() TRACE: -> DATAALLOWED=1 TRACE: leave recv_msg_newkeys TRACE: leave process_packet TRACE: enter cli_sessionloop TRACE: enter send_msg_service_request: servicename='ssh-userauth' TRACE: enter encrypt_packet() TRACE: encrypt_packet type is 5 TRACE: enter writemac TRACE: leave writemac TRACE: enter enqueue TRACE: leave enqueue TRACE: leave encrypt_packet() TRACE: leave send_msg_service_request TRACE: leave cli_sessionloop: sent userauth service req TRACE: enter write_packet TRACE: enter cli_tty_cleanup TRACE: leave cli_tty_cleanup: not in raw mode TRACE: enter session_cleanup TRACE: enter chancleanup TRACE: leave chancleanup TRACE: leave session_cleanup dbclient: connection to [email protected]:22 exited: error writing ---------------------------------------------------------------------------------------------------------------- Please suggest me any pointer so that I can look into that in order to resolve this. Thanks Pratik On Fri, Aug 8, 2014 at 6:04 AM, Matt Johnston <[email protected]> wrote: > Hi Pratik, > > It looks like it is failing when it tries to read the 'y/n' response from > /dev/tty. Can you check that is set up correctly on the system? Running > 'strace -o logfile dbclient...' might have some clues if you send me it. > > You can skip the hostkey confirmation with '-y' but that means you lose > security against the SSH session being altered or monitored. Useful for > debugging though. > > Cheers, > Matt > > On 7 August 2014 10:47:37 pm AWST, pratik singh <[email protected]> > wrote: > >> Hi, >> >> I am using Dropbear 0.48 with uClinux-dist. Currently server is working >> fine but while trying to run dbclient its throwing following error: >> >> >> -------------------------------------------------------------------------------------------------------------------------------------------- >> #dbclient -i dss_key [email protected] >> >> TRACE: enter session_init >> TRACE: kexinitialise() >> TRACE: leave session_init >> TRACE: enter ident_readln >> TRACE: leave ident_readln: return 20 >> TRACE: remoteident: SSH-2.0-OpenSSH_4.3 >> TRACE: enter encrypt_packet() >> TRACE: encrypt_packet type is 20 >> TRACE: enter writemac >> TRACE: leave writemac >> TRACE: enter enqueue >> TRACE: leave enqueue >> TRACE: leave encrypt_packet() >> TRACE: DATAALLOWED=0 >> TRACE: -> KEXINIT >> TRACE: enter write_packet >> TRACE: empty queue dequeing >> TRACE: leave write_packet >> TRACE: enter read_packet >> TRACE: enter decrypt_packet >> TRACE: leave decrypt_packet >> TRACE: leave read_packet >> TRACE: enter process_packet >> TRACE: process_packet: packet type = 20 >> TRACE: <- KEXINIT >> TRACE: enter recv_msg_kexinit >> TRACE: cli_buf_match_algo: >> diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 >> TRACE: kex algo diffie-hellman-group1-sha1 >> TRACE: cli_buf_match_algo: ssh-rsa,ssh-dss >> TRACE: hostkey algo ssh-dss >> TRACE: cli_buf_match_algo: >> aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc, >> [email protected],aes128-ctr,aes192-ctr,aes256-ctr >> TRACE: enc c2s is aes128-cbc >> TRACE: cli_buf_match_algo: >> aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc, >> [email protected],aes128-ctr,aes192-ctr,aes256-ctr >> TRACE: enc s2c is aes128-cbc >> TRACE: cli_buf_match_algo: hmac-md5,hmac-sha1,hmac-ripemd160, >> [email protected],hmac-sha1-96,hmac-md5-96 >> TRACE: hash c2s is hmac-sha1-96 >> TRACE: cli_buf_match_algo: hmac-md5,hmac-sha1,hmac-ripemd160, >> [email protected],hmac-sha1-96,hmac-md5-96 >> TRACE: hash s2c is hmac-sha1-96 >> TRACE: cli_buf_match_algo: none,[email protected] >> TRACE: hash c2s is none >> TRACE: cli_buf_match_algo: none,[email protected] >> TRACE: hash s2c is none >> TRACE: leave recv_msg_kexinit >> TRACE: leave process_packet >> TRACE: enter cli_sessionloop >> TRACE: enter send_msg_kexdh_reply >> >> >> TRACE: enter buf_putmpint >> TRACE: leave buf_putmpint >> TRACE: enter encrypt_packet() >> TRACE: encrypt_packet type is 30 >> TRACE: enter writemac >> TRACE: leave writemac >> TRACE: enter enqueue >> TRACE: leave enqueue >> TRACE: leave encrypt_packet() >> TRACE: leave cli_sessionloop: done with KEXINIT_RCVD >> TRACE: enter write_packet >> TRACE: empty queue dequeing >> TRACE: leave write_packet >> TRACE: enter cli_sessionloop >> TRACE: leave cli_sessionloop: kex_state != KEX_NOTHING >> TRACE: enter read_packet >> TRACE: enter decrypt_packet >> TRACE: leave decrypt_packet >> TRACE: leave read_packet >> TRACE: enter process_packet >> TRACE: process_packet: packet type = 31 >> TRACE: enter recv_msg_kexdh_reply >> TRACE: type is 2 >> TRACE: enter buf_getline >> >> >> >> >> >> >> >> >> >> >> >> >> *TRACE: leave buf_getline: failureTRACE: failed reading line: prob >> EOF Host '10.10.10.1' is not in the trusted hosts file. (fingerprint md5 >> aa:c4:3e:32:ac:42:5b:21:0e:86:7d:b2:21:db:fb:1c)Do you want to continue >> connecting? (y/n)TRACE: enter cli_tty_cleanupTRACE: leave cli_tty_cleanup: >> not in raw modeTRACE: enter session_cleanup TRACE: enter chancleanupTRACE: >> leave chancleanupTRACE: leave session_cleanupdbclient: connection to >> [email protected]:22 <http://[email protected]:22> exited: Didn't validate >> host key* >> >> --------------------------------------------------------------------------------------------------------------------------------- >> >> Any suggestions on this would be a great help. >> >> > -- Thanks & Regards Pratik Singh
