From hdiwan@hdroam.ssd.loral.com  Tue Jul 18 16:58:56 2000
Return-Path: <hdiwan@hdroam.ssd.loral.com>
Received: from hdroam.ssd.loral.com (unknown-44-170.ssd.loral.com [158.184.44.170])
	by hub.freebsd.org (Postfix) with ESMTP id 1F39E37B81B
	for <FreeBSD-gnats-submit@freebsd.org>; Tue, 18 Jul 2000 16:58:47 -0700 (PDT)
	(envelope-from hdiwan@hdroam.ssd.loral.com)
Received: (from hdiwan@localhost)
	by hdroam.ssd.loral.com (8.9.3/8.9.3) id QAA03737;
	Tue, 18 Jul 2000 16:58:44 -0700 (PDT)
	(envelope-from hdiwan)
Message-Id: <200007182358.QAA03737@hdroam.ssd.loral.com>
Date: Tue, 18 Jul 2000 16:58:44 -0700 (PDT)
From: hdiwan@pobox.com
Sender: hdiwan@hdroam.ssd.loral.com
Reply-To: hdiwan@pobox.com
To: FreeBSD-gnats-submit@freebsd.org
Subject: openssh bug
X-Send-Pr-Version: 3.2

>Number:         20018
>Category:       bin
>Synopsis:       OpenSSH does not operate with all ssh2 daemons
>Confidential:   no
>Severity:       serious
>Priority:       high
>Responsible:    kris
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Tue Jul 18 17:00:00 PDT 2000
>Closed-Date:    Wed Jul 19 16:06:19 PDT 2000
>Last-Modified:  Wed Jul 19 16:07:58 PDT 2000
>Originator:     Hasan Diwan
>Release:        FreeBSD 4.1-RC i386
>Organization:
Space Systems/Loral
>Environment:
	OpenSSH-2.1 client, 
	F-Secure SSH-2.0-2.2.0 server

>Description:

	A logged ssh -v connection follows:
SSH Version OpenSSH-2.1, protocol versions 1.5/2.0.
Compiled with SSL (0x00904100).
debug: Reading configuration data /etc/ssh/ssh_config
debug: ssh_connect: getuid 0 geteuid 0 anon 0
debug: Connecting to tomcat.ssd.loral.com [158.184.44.31] port 22.
debug: Allocated local port 934.
debug: Connection established.
debug: Remote protocol version 2.0, remote software version 2.2.0 SSH Secure Shell 
Enabling compatibility mode for protocol 2.0
debug: Local version string SSH-2.0-OpenSSH-2.1
debug: send KEXINIT
debug: done
debug: wait KEXINIT
debug: got kexinit: diffie-hellman-group1-sha1
debug: got kexinit: ssh-dss
debug: got kexinit: 3des-cbc,blowfish-cbc,twofish-cbc,arcfour,none
debug: got kexinit: 3des-cbc,blowfish-cbc,twofish-cbc,arcfour,none
debug: got kexinit: hmac-sha1,hmac-md5,hmac-md5-96,none
debug: got kexinit: hmac-sha1,hmac-md5,hmac-md5-96,none
debug: got kexinit: none,zlib
debug: got kexinit: none,zlib
debug: got kexinit: 
debug: got kexinit: 
debug: first kex follow: 0 
debug: reserved: 0 
debug: done
debug: kex: server->client 3des-cbc hmac-sha1 none
debug: kex: client->server 3des-cbc hmac-sha1 none
debug: Sending SSH2_MSG_KEXDH_INIT.
debug: bits set: 523/1024
debug: Wait SSH2_MSG_KEXDH_REPLY.
debug: Got SSH2_MSG_KEXDH_REPLY.
debug: keytype ssh-dss
debug: keytype ssh-dss
debug: Host 'tomcat.ssd.loral.com' is known and matches the DSA host key.
debug: bits set: 523/1024
debug: len 55 datafellows 0
debug: dsa_verify: signature correct
debug: Wait SSH2_MSG_NEWKEYS.
debug: GOT SSH2_MSG_NEWKEYS.
debug: send SSH2_MSG_NEWKEYS.
debug: done: send SSH2_MSG_NEWKEYS.
debug: done: KEX2.
debug: send SSH2_MSG_SERVICE_REQUEST
Disconnecting: Corrupted HMAC on input.
debug: Calling cleanup 0x80577d0(0x0)

>How-To-Repeat:

	Unknown, appears to be a race condition on the server end.

>Fix:

	unknown


>Release-Note:
>Audit-Trail:
Responsible-Changed-From-To: freebsd-bugs->kris 
Responsible-Changed-By: sheldonh 
Responsible-Changed-When: Wed Jul 19 00:44:46 PDT 2000 
Responsible-Changed-Why:  
Over to our OpenSSH maintainer. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=20018 
State-Changed-From-To: open->closed 
State-Changed-By: kris 
State-Changed-When: Wed Jul 19 16:06:19 PDT 2000 
State-Changed-Why:  
Please discuss this with the OpenSSH developers - see www.openssh.com 
for contact details. FreeBSD does not separately develop OpenSSH, we 
use their version with a few local modifications. Thanks! 

http://www.freebsd.org/cgi/query-pr.cgi?pr=20018 
>Unformatted:
