touch-packages team mailing list archive

Thread
Date
[Bug 1534792] Re: unable to connect or load identity file

To: touch-packages@xxxxxxxxxxxxxxxxxxx
From: Colin Watson <cjwatson@xxxxxxxxxxxxx>
Date: Wed, 20 Jan 2016 12:11:59 -0000
Reply-to: Bug 1534792 <1534792@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx
The key_load_public bits are a red herring; it loads id_rsa(.pub)
successfully (you can tell because it says "type 1", not "type -1"), and
the immediately-subsequent error pertains to id_rsa-cert(.pub) instead.
So it's successfully loaded the available identity file.

I think the next steps here should have been:

 * increase debugging to -vvv rather than just -vv (no point in messing about, might as well have the maximum debugging level)
 * see if there's any useful logging at the server end if you have root access to it, probably in /var/log/auth.log

However, it seems that the network fix was sufficient?  I would say that
a hang is a fairly typical response to a misconfigured network.  ssh's
debugging output is primarily intended for developers, and I don't think
we (or upstream) would generally consider it a bug that it may require
reading the source code to determine what it means.

** Summary changed:

- unable to connect or load identity file
+ unable to connect

-- 
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to openssh in Ubuntu.
https://bugs.launchpad.net/bugs/1534792

Title:
  unable to connect

Status in openssh package in Ubuntu:
  Incomplete

Bug description:
  2 bugs are similar but not the same  at
  https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1522190  and
  https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1497263

  
  host A     ubuntu 14.04.3   -- running ssh-server  

  
  client B and C      

  client B 14.04.3  can connect no problem with ssh keys only to host A
  (to me this means openssh-server is fine on Host A)

  
  Client C  15.10   cannot ssh to host A,  openssh cannot or refuses to load identity files;  output of ssh -vvv below

  $ ssh  ubuntu@172.27.20.1 -vv  
  OpenSSH_6.9p1 Ubuntu-2, OpenSSL 1.0.2d 9 Jul 2015
  debug1: Reading configuration data /etc/ssh/ssh_config
  debug1: /etc/ssh/ssh_config line 19: Applying options for *
  debug2: ssh_connect: needpriv 0
  debug1: Connecting to 172.27.20.1 [172.27.20.1] port 22.
  debug1: Connection established.
  debug1: identity file /home/dsikora/.ssh/id_rsa type 1
  debug1: key_load_public: No such file or directory
  debug1: identity file /home/dsikora/.ssh/id_rsa-cert type -1
  debug1: key_load_public: No such file or directory
  debug1: identity file /home/dsikora/.ssh/id_dsa type -1
  debug1: key_load_public: No such file or directory
  debug1: identity file /home/dsikora/.ssh/id_dsa-cert type -1
  debug1: key_load_public: No such file or directory
  debug1: identity file /home/dsikora/.ssh/id_ecdsa type -1
  debug1: key_load_public: No such file or directory
  debug1: identity file /home/dsikora/.ssh/id_ecdsa-cert type -1
  debug1: key_load_public: No such file or directory
  debug1: identity file /home/dsikora/.ssh/id_ed25519 type -1
  debug1: key_load_public: No such file or directory
  debug1: identity file /home/dsikora/.ssh/id_ed25519-cert type -1
  debug1: Enabling compatibility mode for protocol 2.0
  debug1: Local version string SSH-2.0-OpenSSH_6.9p1 Ubuntu-2

  
  ###at this point connection hangs -- sometimes i get back "ssh_exchange_identification: read: Connection reset by peer"


  permissions on files look OK to me:

  $ ls -all .ssh
  total 24
  drwx------  2 user user 4096 Jan 15 12:53 .
  drwxr-xr-x 26 user user 4096 Jan 15 12:13 ..
  -rw-r--r--  1 user user  396 Jan 15 12:53 authorized_keys
  -rw-------  1 user user 1679 Jan 14 16:15 id_rsa
  -rw-r--r--  1 user user  395 Jan 14 16:15 id_rsa.pub
  -rw-r--r--  1 user user  1094 Jan 15 12:18 known_hosts

  and home dir :
  $ ls -all /home
  drwxr-xr-x 26 user user  4096 Jan 15 12:13 user

  
  actual username replaced with "user"


  ssh versions on Client

  
  $ dpkg -l | grep ssh
  ii  libssh-4:amd64                                0.6.3-3ubuntu3                             amd64        tiny C SSH library (OpenSSL flavor)
  ii  openssh-client                                1:6.9p1-2                                  amd64        secure shell (SSH) client, for secure access to remote machines
  ii  openssh-server                                1:6.9p1-2                                  amd64        secure shell (SSH) server, for secure access from remote machines
  ii  openssh-sftp-server                           1:6.9p1-2                                  amd64        secure shell (SSH) sftp server module, for SFTP access from remote machines
  ii  ssh-askpass-gnome                             1:6.9p1-2                                  amd64        interactive X program to prompt users for a passphrase for ssh-add
  ii  ssh-import-id                                 4.5-0ubuntu1                               all          securely retrieve an SSH public key and install it locally

  please advise.

  thanks

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1534792/+subscriptions
Follow ups

Re: [Bug 1534792] Re: unable to connect or load identity file
From: Douglas Sikora, 2016-01-20
References

[Bug 1534792] [NEW] unable to connect or load identity file
From: Douglas Sikora, 2016-01-15