Hello,
I have a problem, and was hoping to get some feedback from the JSCH
user community.
Here are the facts:
* Solaris machine A (Solaris 10 6/06, Generic_138888-03, V490)
* Sun_SSH_1.1, SSH protocols 1.5/2.0, OpenSSL 0x0090704f
* Java(TM) 2 Runtime Environment, Standard Edition (build 1.5.0_06-b05)
* Solaris machine B (Solaris 10 5/08, Generic_142900-03, T5140)
* Sun_SSH_1.1.3, SSH protocols 1.5/2.0, OpenSSL 0x0090704f
* Java(TM) 2 Runtime Environment, Standard Edition (build 1.5.0_06-b05)
Using an identical JSCH test class on both machines, with identical
jsch-0.1.42.jar:
* Machine A has no problems, successful connection every time.
* Machine B has intermittent failure. Some connections succeed,
some fail. Error message and place of failure is the same when it
does fail.
By including additional logging in the JSCH test class, I see the following:
INFO: Connecting to server port 9898
INFO: Connection established
INFO: Remote version string: SSH-2.0-Sun_SSH_1.1.1
INFO: Local version string: SSH-2.0-JSCH-0.1.42
INFO: CheckCiphers:
aes256-ctr,aes192-ctr,aes128-ctr,aes256-cbc,aes192-cbc,aes128-cbc,3des-ctr,arcfour,arcfour128,arcfour256
INFO: aes256-ctr is not available.
INFO: aes192-ctr is not available.
INFO: aes256-cbc is not available.
INFO: aes192-cbc is not available.
INFO: arcfour256 is not available.
INFO: SSH_MSG_KEXINIT sent
INFO: SSH_MSG_KEXINIT received
INFO: kex: server->client aes128-ctr hmac-md5 none
INFO: kex: client->server aes128-ctr hmac-md5 none
INFO: SSH_MSG_KEXDH_INIT sent
INFO: expecting SSH_MSG_KEXDH_REPLY
INFO: Disconnecting from server port 9898
com.jcraft.jsch.JSchException: SSH_MSG_DISCONNECT: 2 bad client public DH value
at com.jcraft.jsch.Session.read(Session.java:892)
at com.jcraft.jsch.Session.connect(Session.java:289)
at com.jcraft.jsch.Session.connect(Session.java:150)
at Tester.main(Tester.java:23)
On the sshd server side, I see the following when this happens:
Jul 29 09:02:06 server sshd[15]: [ID 800047 auth.info] invalid public
DH value (1/1024)
Jul 29 09:02:06 server sshd[15]: [ID 800047 auth.info] Disconnecting:
bad client public DH value
Jul 29 09:02:06 server sshd[14]: [ID 800047 auth.info] Connection
closed by client
The obvious difference to me is the hardware platform. Machine B is
using the T2 processors, whereas Machine A is US-IV.
As a side note, I have already replicated the symptoms using the
jsch-0.1.43.jar library as well.
Does anyone have any additional feedback or insight they could give me
using the information I have provided? Does anyone have any
experience with SSH or other crypto problems on the T2 platform?
--
Best Regards,
Scott Spyrison
------------------------------------------------------------------------------
The Palm PDK Hot Apps Program offers developers who use the
Plug-In Development Kit to bring their C/C++ apps to Palm for a share
of $1 Million in cash or HP Products. Visit us here for more details:
http://p.sf.net/sfu/dev2dev-palm
_______________________________________________
JSch-users mailing list
JSch-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/jsch-users
