<div dir="ltr">Hi Matt,<div><br></div><div>Thanks for your valuable suggestion.</div><div>Unfortunately my system doesn't have "strace" utility support. I tried dbclient with "-y" option but again its failing again with "write error:broken pipe".<br>
<br></div><div>Filesystem has read/write permission.<br><br># dbclient -v -y -i dropbear_dss_host_key <a href="mailto:pratik@10.10.10.1">pratik@10.10.10.1</a><br>TRACE: enter buf_get_priv_key<br>TRACE: enter dsa_key_free<br>
TRACE: enter dsa_key_free: key == NULL<br>TRACE: enter buf_get_dss_pub_key<br>TRACE: leave buf_get_dss_pub_key: success<br>TRACE: leave buf_get_priv_key<br>TRACE: non-flag arg: '<a href="mailto:pratik@10.10.10.1">pratik@10.10.10.1</a>'<br>
TRACE: user='pratiks' host='10.10.10.1' port='22'<br>TRACE: enter connect_remote<br>TRACE: leave connect_remote: sock 4<br> <br>TRACE: enter session_init<br>TRACE: kexinitialise()<br>TRACE: leave session_init<br>
TRACE: enter ident_readln<br>TRACE: leave ident_readln: return 20<br>TRACE: remoteident: SSH-2.0-OpenSSH_4.3<br>TRACE: enter encrypt_packet()<br>TRACE: encrypt_packet type is 20<br>TRACE: enter writemac<br>TRACE: leave writemac<br>
TRACE: enter enqueue<br>TRACE: leave enqueue<br>TRACE: leave encrypt_packet()<br>TRACE: DATAALLOWED=0<br>TRACE: -> KEXINIT<br>TRACE: enter write_packet<br>TRACE: empty queue dequeing<br>TRACE: leave write_packet<br>TRACE: enter read_packet<br>
TRACE: enter decrypt_packet<br>TRACE: leave decrypt_packet<br>TRACE: leave read_packet<br>TRACE: enter process_packet<br>TRACE: process_packet: packet type = 20<br>TRACE: <- KEXINIT<br>TRACE: enter recv_msg_kexinit<br>
TRACE: cli_buf_match_algo: diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1<br>TRACE: kex algo diffie-hellman-group1-sha1<br>TRACE: cli_buf_match_algo: ssh-rsa,ssh-dss<br>TRACE: hostkey algo ssh-dss<br>
TRACE: cli_buf_match_algo: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,<a href="mailto:rijndael-cbc@lysator.liu.se">rijndael-cbc@lysator.liu.se</a>,aes128-ctr,aes192-ctr,aes256-ctr<br>
TRACE: enc c2s is aes128-cbc<br>TRACE: cli_buf_match_algo: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,<a href="mailto:rijndael-cbc@lysator.liu.se">rijndael-cbc@lysator.liu.se</a>,aes128-ctr,aes192-ctr,aes256-ctr<br>
TRACE: enc s2c is aes128-cbc<br>TRACE: cli_buf_match_algo: hmac-md5,hmac-sha1,hmac-ripemd160,<a href="mailto:hmac-ripemd160@openssh.com">hmac-ripemd160@openssh.com</a>,hmac-sha1-96,hmac-md5-96<br>TRACE: hash c2s is hmac-sha1-96<br>
TRACE: cli_buf_match_algo: hmac-md5,hmac-sha1,hmac-ripemd160,<a href="mailto:hmac-ripemd160@openssh.com">hmac-ripemd160@openssh.com</a>,hmac-sha1-96,hmac-md5-96<br>TRACE: hash s2c is hmac-sha1-96<br>TRACE: cli_buf_match_algo: none,<a href="mailto:zlib@openssh.com">zlib@openssh.com</a><br>
TRACE: hash c2s is none<br>TRACE: cli_buf_match_algo: none,<a href="mailto:zlib@openssh.com">zlib@openssh.com</a><br>TRACE: hash s2c is none<br>TRACE: leave recv_msg_kexinit<br>TRACE: leave process_packet<br>TRACE: enter cli_sessionloop<br>
TRACE: enter send_msg_kexdh_reply<br> <br> <br>TRACE: enter buf_putmpint<br>TRACE: leave buf_putmpint<br>TRACE: enter encrypt_packet()<br>TRACE: encrypt_packet type is 30<br>TRACE: enter writemac<br>TRACE: leave writemac<br>
TRACE: enter enqueue<br>TRACE: leave enqueue<br>TRACE: leave encrypt_packet()<br>TRACE: leave cli_sessionloop: done with KEXINIT_RCVD<br>TRACE: enter write_packet<br>TRACE: empty queue dequeing<br>TRACE: leave write_packet<br>
TRACE: enter cli_sessionloop<br>TRACE: leave cli_sessionloop: kex_state != KEX_NOTHING<br>TRACE: enter read_packet<br>TRACE: enter decrypt_packet<br>TRACE: leave decrypt_packet<br>TRACE: leave read_packet<br>TRACE: enter process_packet<br>
TRACE: process_packet: packet type = 31<br>TRACE: enter recv_msg_kexdh_reply<br>TRACE: type is 2<br>TRACE: leave buf_getline: success<br>TRACE: checkpubkey: base64_decode success<br>TRACE: good matching key<br>TRACE: enter buf_get_pub_key<br>
TRACE: enter dsa_key_free<br>TRACE: enter dsa_key_free: key == NULL<br>TRACE: enter buf_get_dss_pub_key<br>TRACE: leave buf_get_dss_pub_key: success<br>TRACE: leave buf_get_pub_key<br> <br> <br>TRACE: enter buf_put_pub_key<br>
TRACE: enter buf_putmpint<br>TRACE: leave buf_putmpint<br>TRACE: enter buf_putmpint<br>TRACE: leave buf_putmpint<br>TRACE: enter buf_putmpint<br>TRACE: leave buf_putmpint<br>TRACE: enter buf_putmpint<br>TRACE: leave buf_putmpint<br>
TRACE: leave buf_put_pub_key<br>TRACE: enter buf_putmpint<br>TRACE: leave buf_putmpint<br>TRACE: enter buf_putmpint<br>TRACE: leave buf_putmpint<br>TRACE: enter buf_putmpint<br>TRACE: leave buf_putmpint<br>TRACE: enter buf_verify<br>
TRACE: enter buf_dss_verify<br> <br> <br> <br>TRACE: enter sign_key_free<br>TRACE: enter dsa_key_free<br>TRACE: leave dsa_key_free<br>TRACE: leave sign_key_free<br>TRACE: enter send_msg_newkeys<br>TRACE: enter encrypt_packet()<br>
TRACE: encrypt_packet type is 21<br>TRACE: enter writemac<br>TRACE: leave writemac<br>TRACE: enter enqueue<br>TRACE: leave enqueue<br>TRACE: leave encrypt_packet()<br>TRACE: SENTNEWKEYS=1<br>TRACE: -> MSG_NEWKEYS<br>TRACE: leave send_msg_newkeys<br>
TRACE: leave recv_msg_kexdh_init<br>TRACE: leave process_packet<br>TRACE: enter cli_sessionloop<br>TRACE: leave cli_sessionloop: kex_state != KEX_NOTHING<br>TRACE: enter write_packet<br>TRACE: empty queue dequeing<br>TRACE: leave write_packet<br>
TRACE: enter read_packet<br>TRACE: enter decrypt_packet<br>TRACE: leave decrypt_packet<br>TRACE: leave read_packet<br>TRACE: enter process_packet<br>TRACE: process_packet: packet type = 21<br>TRACE: <- MSG_NEWKEYS<br>
TRACE: enter recv_msg_newkeys<br>
TRACE: while SENTNEWKEYS=1<br>TRACE: enter gen_new_keys<br>TRACE: enter buf_putmpint<br>TRACE: leave buf_putmpint<br>TRACE: leave gen_new_keys<br>TRACE: kexinitialise()<br>TRACE: -> DATAALLOWED=1<br>TRACE: leave recv_msg_newkeys<br>
TRACE: leave process_packet<br>TRACE: enter cli_sessionloop<br>TRACE: enter send_msg_service_request: servicename='ssh-userauth'<br>TRACE: enter encrypt_packet()<br>TRACE: encrypt_packet type is 5<br>TRACE: enter writemac<br>
TRACE: leave writemac<br>TRACE: enter enqueue<br>TRACE: leave enqueue<br>TRACE: leave encrypt_packet()<br>TRACE: leave send_msg_service_request<br>TRACE: leave cli_sessionloop: sent userauth service req<br>TRACE: enter write_packet<br>
TRACE: enter cli_tty_cleanup<br>TRACE: leave cli_tty_cleanup: not in raw mode<br>TRACE: enter session_cleanup<br>TRACE: enter chancleanup<br>TRACE: leave chancleanup<br>TRACE: leave session_cleanup<br>dbclient: connection to <a href="http://pratik@10.10.10.1:22">pratik@10.10.10.1:22</a> exited: error writing<br>
<br></div>
<div>----------------------------------------------------------------------------------------------------------------<br><br></div><div>Please suggest me any pointer so that I can look into that in order to resolve this. <br>
<br></div><div>Thanks<br></div><div>Pratik<br></div><div><br></div></div><div class="gmail_extra"><br><br><div class="gmail_quote">On Fri, Aug 8, 2014 at 6:04 AM, Matt Johnston <span dir="ltr"><<a href="mailto:matt@ucc.asn.au" target="_blank">matt@ucc.asn.au</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div><div class="">Hi Pratik,<br>
<br>
It looks like it is failing when it tries to read the 'y/n' response from /dev/tty. Can you check that is set up correctly on the system? Running 'strace -o logfile dbclient...' might have some clues if you send me it.<br>
<br>
You can skip the hostkey confirmation with '-y' but that means you lose security against the SSH session being altered or monitored. Useful for debugging though.<br>
<br>
Cheers,<br>
Matt<br><br></div><div class="gmail_quote"><div class="">On 7 August 2014 10:47:37 pm AWST, pratik singh <<a href="mailto:pratiksingh86@gmail.com" target="_blank">pratiksingh86@gmail.com</a>> wrote:</div><div><div class="h5">
<blockquote class="gmail_quote" style="margin:0pt 0pt 0pt 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">
<div dir="ltr"><div><div>Hi,<br><br></div>I am using Dropbear 0.48 with uClinux-dist. Currently server is working fine but while trying to run dbclient its throwing following error:<br><br>--------------------------------------------------------------------------------------------------------------------------------------------<br>
</div>#dbclient -i dss_key <a href="mailto:pratik@10.10.10.1" target="_blank">pratik@10.10.10.1</a><br><br><div>TRACE: enter session_init<br>TRACE: kexinitialise()<br>TRACE: leave session_init<br>TRACE: enter ident_readln<br>
TRACE: leave ident_readln: return 20<br>
TRACE: remoteident: SSH-2.0-OpenSSH_4.3<br>TRACE: enter encrypt_packet()<br>TRACE: encrypt_packet type is 20<br>TRACE: enter writemac<br>TRACE: leave writemac<br>TRACE: enter enqueue<br>TRACE: leave enqueue<br>TRACE: leave encrypt_packet()<br>
TRACE: DATAALLOWED=0<br>TRACE: -> KEXINIT<br>TRACE: enter write_packet<br>TRACE: empty queue dequeing<br>TRACE: leave write_packet<br>TRACE: enter read_packet<br>TRACE: enter decrypt_packet<br>TRACE: leave decrypt_packet<br>
TRACE: leave read_packet<br>TRACE: enter process_packet<br>TRACE: process_packet: packet type = 20<br>TRACE: <- KEXINIT<br>TRACE: enter recv_msg_kexinit<br>TRACE: cli_buf_match_algo: diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1<br>
TRACE: kex algo diffie-hellman-group1-sha1<br>TRACE: cli_buf_match_algo: ssh-rsa,ssh-dss<br>TRACE: hostkey algo ssh-dss<br>TRACE: cli_buf_match_algo: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,<a href="mailto:rijndael-cbc@lysator.liu.se" target="_blank">rijndael-cbc@lysator.liu.se</a>,aes128-ctr,aes192-ctr,aes256-ctr<br>
TRACE: enc c2s is aes128-cbc<br>TRACE: cli_buf_match_algo: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,<a href="mailto:rijndael-cbc@lysator.liu.se" target="_blank">rijndael-cbc@lysator.liu.se</a>,aes128-ctr,aes192-ctr,aes256-ctr<br>
TRACE: enc s2c is aes128-cbc<br>TRACE: cli_buf_match_algo: hmac-md5,hmac-sha1,hmac-ripemd160,<a href="mailto:hmac-ripemd160@openssh.com" target="_blank">hmac-ripemd160@openssh.com</a>,hmac-sha1-96,hmac-md5-96<br>TRACE: hash c2s is hmac-sha1-96<br>
TRACE: cli_buf_match_algo: hmac-md5,hmac-sha1,hmac-ripemd160,<a href="mailto:hmac-ripemd160@openssh.com" target="_blank">hmac-ripemd160@openssh.com</a>,hmac-sha1-96,hmac-md5-96<br>TRACE: hash s2c is hmac-sha1-96<br>TRACE: cli_buf_match_algo: none,<a href="mailto:zlib@openssh.com" target="_blank">zlib@openssh.com</a><br>
TRACE: hash c2s is none<br>TRACE: cli_buf_match_algo: none,<a href="mailto:zlib@openssh.com" target="_blank">zlib@openssh.com</a><br>TRACE: hash s2c is none<br>TRACE: leave recv_msg_kexinit<br>TRACE: leave process_packet<br>
TRACE: enter cli_sessionloop<br>
TRACE: enter send_msg_kexdh_reply<br> <br> <br>TRACE: enter buf_putmpint<br>TRACE: leave buf_putmpint<br>TRACE: enter encrypt_packet()<br>TRACE: encrypt_packet type is 30<br>TRACE: enter writemac<br>TRACE: leave writemac<br>
TRACE: enter enqueue<br>TRACE: leave enqueue<br>TRACE: leave encrypt_packet()<br>TRACE: leave cli_sessionloop: done with KEXINIT_RCVD<br>TRACE: enter write_packet<br>TRACE: empty queue dequeing<br>TRACE: leave write_packet<br>
TRACE: enter cli_sessionloop<br>TRACE: leave cli_sessionloop: kex_state != KEX_NOTHING<br>TRACE: enter read_packet<br>TRACE: enter decrypt_packet<br>TRACE: leave decrypt_packet<br>TRACE: leave read_packet<br>TRACE: enter process_packet<br>
TRACE: process_packet: packet type = 31<br>TRACE: enter recv_msg_kexdh_reply<br>TRACE: type is 2<br>TRACE: enter buf_getline<br><b>TRACE: leave buf_getline: failure<br>TRACE: failed reading line: prob EOF<br> <br>Host '10.10.10.1' is not in the trusted hosts file.<br>
(fingerprint md5 aa:c4:3e:32:ac:42:5b:21:0e:86:7d:b2:21:db:fb:1c)<br>Do you want to continue connecting? (y/n)<br>TRACE: enter cli_tty_cleanup<br>TRACE: leave cli_tty_cleanup: not in raw mode<br>TRACE: enter session_cleanup<br>
TRACE: enter chancleanup<br>TRACE: leave chancleanup<br>TRACE: leave session_cleanup<br>dbclient: connection to <a href="http://pratik@10.10.10.1:22" target="_blank">pratik@10.10.10.1:22</a> exited: Didn't validate host key</b><br clear="all">
<div><div>---------------------------------------------------------------------------------------------------------------------------------<br><br></div><div>Any suggestions on this would be a great help.<br> <br></div><div>
</div></div></div></div></blockquote></div></div></div></div></blockquote></div><br><br clear="all"><br>-- <br>Thanks & Regards<br>Pratik Singh<br>
</div>