Red Hat Bugzilla – Bug 34797
linux openssh-2.5.2p2-1.7 can't connect to solaris openssh-2.5.1p1
Last modified: 2008-05-01 11:38:00 EDT
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux 2.4.2 i686; en-US; 0.8.1) Gecko/20010322
I updated my i386 redhat linux 7.0 boxes (running kernel 2.4.[1-2]) to
openssh-2.5.2p2-1.7 and am now unable to connect to my solaris 8 machines
running openssh-2.5.1p1. The linux boxes are running frrom rpm:
openssh-2.5.2p2-1.7.i386.rpm. The solaris boxes got openssh 2.5.1p1 from:
The error message received reads:
Received disconnect from ip.add.ress.here: 2: Bad packet length 1058263357.
This only happens when trying to connect from linux to solaris. I can
connect from solaris to an upgraded linux box. I am able to connect from
linux using any previous version of the openssh rpm.
Steps to Reproduce:
1.Install upgraded openssh rpm
2.Install latest sunfreeware openssh package
3.Attempt to connect from linux to solaris
4.Be gripped by dissapointment :)
Actual Results: Received error message:
Received disconnect from xxx.xxx.xxx.xxx: 2: Bad packet length 1058263357.
Expected Results: Should have gotten a password prompt.
I have nothing further.
This bug also surfaces with a HPUX version of
When trying to connect from a RH7 box to the HPUX box the same thing happens.
tail from ssh -v -v -v user@HPUX
debug1: bits set: 1051/2049
debug1: len 55 datafellows 4096
debug1: ssh_dss_verify: signature correct
debug1: Wait SSH2_MSG_NEWKEYS.
debug1: GOT SSH2_MSG_NEWKEYS.
debug1: send SSH2_MSG_NEWKEYS.
debug1: done: send SSH2_MSG_NEWKEYS.
debug1: done: KEX2.
debug1: send SSH2_MSG_SERVICE_REQUEST
Received disconnect from 188.8.131.52: 2: Bad packet length 2122562889.
debug1: Calling cleanup 0x80615d0(0x0)
Interim solution is to use:
ssh -1 user@HPUX
if the host hasn't disabled the ssh 1 protocol.
This caused by buggy aes/rijndael implementation in openssh < 2.5.2p2.
There was a patch for this (aes-compat.diff), but unfortunately, it does not
If you apply the patch:
- (djm) OpenBSD CVS Sync
- firstname.lastname@example.org 2001/03/29 21:06:21
need to set both STOC and CTOS for SSH_BUG_BIGENDIANAES; ok markus@
It will work; I tried this by grabbing:
and ignoring the first reject.
Note: you can also get around the problem by defining Ciphers statically, e.g.,
No problems then.
There are new packages on sunfreeware:
These are not listed on the main sunfreeware web page, but they are up on the
ftp site. I have tested with these new packages and the latest RPM updates for
Redhat 7.0 (openssh-2.5.2p2-1.7.2.i386.rpm). Everything appears to be working
smoothly. Hope this helps someone out there! I think this bug should probably be
closed, but will leave it up to the ASSIGNED contact. Thanks!
Created attachment 15364 [details]
This problem is fixed by this additional patch
*** Bug 36298 has been marked as a duplicate of this bug. ***
The compatibility mode is fixed in Rawhide openssh-2.9p1-1.
The same problem shows up when conntecting to a box running
AIX 4 and OpenSSH_2.3.0p1. Could you (RH) please issue errata packages for 7.1.
There were security problems found (you could delete other people's 'cookies'
to X11 forwarding) lately, so this is probably going to happen, I think.