[Bug 400776] [NEW] ssh-keyscan(1) hangs if broken server does partial handshake

Daniel Richard G. Fri, 17 Jul 2009 10:05:34 -0700

Public bug reported:

Binary package hint: openssh-client


This concerns openssh-client 1:5.1p1-5ubuntu1 in Ubuntu Jaunty.

I use ssh-keyscan(1) at a company site to create a global
ssh_known_hosts file. I've found, however, that the program comes to a
halt when it scans one particular system, an ancient, abused laptop
apparently running Debian Sarge (according to the SSH server banner).
When the program reaches that point, it simply sits there, past the
timeout specified via -T, waiting on a select() call per strace(1).
After about fifteen minutes, you see "Connection closed by $IP_ADDRESS",
and the program summarily exits with status 255.

If I connect to the system with "ssh -v r...@$ip_address", I get

--------8<--------
OpenSSH_5.1p1 Debian-5ubuntu1, OpenSSL 0.9.8g 19 Oct 2007
debug1: Reading configuration data /home/username/.ssh/config
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug1: Connecting to $IP_ADDRESS [$IP_ADDRESS] port 22.
debug1: Connection established.
debug1: identity file /home/username/.ssh/identity type -1
debug1: identity file /home/username/.ssh/id_rsa type -1
debug1: identity file /home/username/.ssh/id_dsa type 2
debug1: Checking blacklist file /usr/share/ssh/blacklist.DSA-1024
debug1: Checking blacklist file /etc/ssh/blacklist.DSA-1024
debug1: Remote protocol version 2.0, remote software version OpenSSH_3.8.1p1 
Debian-8.sarge.4
debug1: match: OpenSSH_3.8.1p1 Debian-8.sarge.4 pat OpenSSH_3.*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_5.1p1 Debian-5ubuntu1
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
[sits here idle for about fifteen minutes]
Connection closed by $IP_ADDRESS
-------->8--------

** Affects: openssh (Ubuntu)
     Importance: Undecided
         Status: New

-- 
ssh-keyscan(1) hangs if broken server does partial handshake
https://bugs.launchpad.net/bugs/400776
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to openssh in ubuntu.

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 400776] [NEW] ssh-keyscan(1) hangs if broken server does partial handshake

Reply via email to