Bug#710258: marked as done (openssh-client: cannot connect with some config (regression))

To: Vincent Lefevre <vincent@vinc17.net>
Subject: Bug#710258: marked as done (openssh-client: cannot connect with some config (regression))
From: owner@bugs.debian.org (Debian Bug Tracking System)
Date: Wed, 29 May 2013 11:48:13 +0000
Message-id: <handler.710258.D710258.13698278656583.ackdone@bugs.debian.org>
References: <20130529114422.GA20966@ypig.lip.ens-lyon.fr> <20130529112854.GA20126@ypig.lip.ens-lyon.fr>

Your message dated Wed, 29 May 2013 13:44:22 +0200
with message-id <20130529114422.GA20966@ypig.lip.ens-lyon.fr>
and subject line Re: openssh-client: cannot connect with some config (regression)
has caused the Debian Bug report #710258,
regarding openssh-client: cannot connect with some config (regression)
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
710258: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=710258
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems

--- Begin Message ---

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: openssh-client: cannot connect with some config (regression)
From: Vincent Lefevre <vincent@vinc17.net>
Date: Wed, 29 May 2013 13:28:54 +0200
Message-id: <20130529112854.GA20126@ypig.lip.ens-lyon.fr>

Package: openssh-client
Version: 1:6.2p2-3
Severity: important

There's a regression in openssh-client. I can no longer connect to
some account.

In particular, I have the following in my .ssh/config file:

IdentityFile ~/.ssh/id_rsa-internal
IdentityFile ~/.ssh/id_rsa

Host ens ssh.ens-lyon.fr
  Hostname ssh.ens-lyon.fr
  User vlefevre
  ProxyCommand none
  StrictHostKeyChecking yes

Host *.ens-lyon.fr
  User vlefevre
  StrictHostKeyChecking yes

$ ssh ens
no such identity: /home/vlefevre/.ssh/id_rsa-internal: No such file or directory
Permission denied (publickey,keyboard-interactive).

$ ssh -v ens
OpenSSH_6.2p2 Debian-3, OpenSSL 1.0.1e 11 Feb 2013
debug1: Reading configuration data /home/vlefevre/.ssh/config
debug1: /home/vlefevre/.ssh/config line 222: Applying options for ens
debug1: /home/vlefevre/.ssh/config line 378: Applying options for *
debug1: Control socket "/tmp/ssh-ssh.ens-lyon.fr-22-vlefevre" does not exist
debug1: Connecting to ssh.ens-lyon.fr [140.77.51.8] port 22.
debug1: Connection established.
debug1: identity file /home/vlefevre/.ssh/id_rsa-internal type -1
debug1: identity file /home/vlefevre/.ssh/id_rsa-internal-cert type -1
debug1: identity file /home/vlefevre/.ssh/id_rsa type 1
debug1: Checking blacklist file /usr/share/ssh/blacklist.RSA-2048
debug1: Checking blacklist file /etc/ssh/blacklist.RSA-2048
debug1: identity file /home/vlefevre/.ssh/id_rsa-cert type -1
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_6.2p2 Debian-3
debug1: Remote protocol version 2.0, remote software version OpenSSH_6.0p1 Debian-4
debug1: match: OpenSSH_6.0p1 Debian-4 pat OpenSSH*
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-ctr hmac-md5 none
debug1: kex: client->server aes128-ctr hmac-md5 none
debug1: sending SSH2_MSG_KEX_ECDH_INIT
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug1: Server host key: RSA 1f:2a:11:b7:75:21:39:71:8c:b3:21:2d:52:c5:21:64
debug1: Host 'ssh.ens-lyon.fr' is known and matches the RSA host key.
debug1: Found key in /home/vlefevre/.ssh/known_hosts:1
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: Roaming not allowed by server
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,keyboard-interactive
debug1: Next authentication method: publickey
debug1: Offering RSA public key: /home/vlefevre/.ssh/id_rsa
debug1: Authentications that can continue: publickey,keyboard-interactive
debug1: Offering RSA public key: /home/vlefevre/.ssh/id_rsa-mutt
debug1: Authentications that can continue: publickey,keyboard-interactive
debug1: Offering RSA public key: /home/vlefevre/.ssh/id_rsa-svn
debug1: Authentications that can continue: publickey,keyboard-interactive
debug1: Trying private key: /home/vlefevre/.ssh/id_rsa-internal
no such identity: /home/vlefevre/.ssh/id_rsa-internal: No such file or directory
debug1: Next authentication method: keyboard-interactive
debug1: Authentications that can continue: publickey,keyboard-interactive
debug1: No more authentication methods to try.
Permission denied (publickey,keyboard-interactive).

But using "ssh ssh.ens-lyon.fr" is OK. Why?

Note: indeed, /home/vlefevre/.ssh/id_rsa-internal doesn't exist,
but why should this be a problem?

-- System Information:
Debian Release: jessie/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.8-2-amd64 (SMP w/8 CPU cores)
Locale: LANG=POSIX, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages openssh-client depends on:
ii  adduser           3.113+nmu3
ii  dpkg              1.16.10
ii  libc6             2.17-3
ii  libedit2          2.11-20080614-5
ii  libgssapi-krb5-2  1.10.1+dfsg-6
ii  libselinux1       2.1.13-2
ii  libssl1.0.0       1.0.1e-3
ii  passwd            1:4.1.5.1-1
ii  zlib1g            1:1.2.8.dfsg-1

Versions of packages openssh-client recommends:
ii  xauth  1:1.0.7-1

Versions of packages openssh-client suggests:
pn  keychain                 <none>
pn  libpam-ssh               <none>
pn  monkeysphere             <none>
ii  openssh-blacklist        0.4.1+nmu1
ii  openssh-blacklist-extra  0.4.1+nmu1
pn  ssh-askpass              <none>

-- no debconf information

--- End Message ---

--- Begin Message ---

To: 710258-done@bugs.debian.org

Subject: Re: openssh-client: cannot connect with some config (regression)

From: Vincent Lefevre <vincent@vinc17.net>

Date: Wed, 29 May 2013 13:44:22 +0200

Message-id: <20130529114422.GA20966@ypig.lip.ens-lyon.fr>

In-reply-to: <20130529112854.GA20126@ypig.lip.ens-lyon.fr>

References: <20130529112854.GA20126@ypig.lip.ens-lyon.fr>
On 2013-05-29 13:28:54 +0200, Vincent Lefevre wrote:
> $ ssh ens
> no such identity: /home/vlefevre/.ssh/id_rsa-internal: No such file or directory
> Permission denied (publickey,keyboard-interactive).

This is working again. So, I'm closing the bug. It seems to have
been a temporary problem with the server, and the fact that it
worked again with "ssh ssh.ens-lyon.fr" was just a coincidence.

BTW, the error message is very confusing: the problem wasn't due to
missing .ssh/id_rsa-internal, but to the fact that the .ssh/id_rsa
key was not accepted!

-- 
Vincent Lefèvre <vincent@vinc17.net> - Web: <http://www.vinc17.net/>
100% accessible validated (X)HTML - Blog: <http://www.vinc17.net/blog/>
Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)
--- End Message ---

Reply to:

References:
- Bug#710258: openssh-client: cannot connect with some config (regression)
  - From: Vincent Lefevre <vincent@vinc17.net>

Prev by Date: Bug#710258: openssh-client: cannot connect with some config (regression)
Previous by thread: Bug#710258: openssh-client: cannot connect with some config (regression)
Index(es):
- Date
- Thread