--1733456068-469654921-1393323540=:98302 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable Hi Alon,=0A=0AI am currently setting up a non ovirt-node host on a differen= t machine on Fedora 19.=0A=0AI haven't changed sshd settings.=A0=0A=0AI rem= ember executing setenforce 0. Would that cause this issue?=0A=0AI am planni= ng to re-install oVirtNode (same 3.0.3 fc19 ISO), Please let me know if you= have any suggestions.=0A=0A=0ARegards,=0AUdaya Kiran=0A=0A=0A=0AOn Tuesday= , 25 February 2014 3:39 PM, Alon Bar-Lev <alonbl@redhat.com> wrote:=0A =0A= =0A=0A----- Original Message -----=0A> From: "Udaya Kiran P" <ukiran770@yah= oo.in>=0A> To: "Alon Bar-Lev" <alonbl@redhat.com>, "Fabian Deutsch" <fabian= d@redhat.com>=0A> Cc: "users" <users@ovirt.org>=0A> Sent: Tuesday, February= 25, 2014 11:49:16 AM=0A> Subject: Re: [Users] Host installation failed.=A0= =A0=A0 SSH=A0=A0=A0 session=A0=A0=A0 closed=A0=A0=A0 during=A0=A0=A0 connec= tion (ovirt-node-iso-3.0.3-1.1.fc19)=0A> =0A> Hi Alan,=0A> =0A> Here is the= output for ssh-keyscan,=0A> =0A> [root@test-1010155223 ~]# ssh-keyscan -v = 10.10.120.244=0A> debug1: match: OpenSSH_6.2 pat OpenSSH*=0A> # 10.10.120.2= 44 SSH-2.0-OpenSSH_6.2=0A> debug1: Enabling compatibility mode for protocol= 2.0=0A> debug1: SSH2_MSG_KEXINIT sent=0A> debug1: SSH2_MSG_KEXINIT receive= d=0A> debug1: kex: server->client aes128-ctr hmac-md5-etm@openssh.com none= =0A> debug1: kex: client->server aes128-ctr hmac-md5-etm@openssh.com none= =0A> no hostkey alg=0A> debug1: match: OpenSSH_6.2 pat OpenSSH*=0A> # 10.10= .120.244 SSH-2.0-OpenSSH_6.2=0A> debug1: SSH2_MSG_KEXINIT sent=0A> debug1: = SSH2_MSG_KEXINIT received=0A> debug1: kex: server->client aes128-ctr hmac-m= d5-etm@openssh.com none=0A> debug1: kex: client->server aes128-ctr hmac-md5= -etm@openssh.com none=0A> bad hostkey alg 'ecdsa-sha2-nistp256'=0A> [root@t= est-1010155223 ~]#=0A> =0A> Please suggest.=0A=0AThis is strange!!!!!=0AYou= do not have PK at all.=0ADoes it happen for all hosts or just this particu= lar one? Can you please try other non ovirt-node hosts?=0AI still think tha= t something was altered at sshd at host side, or there is something wrong w= ith ovirt-node image.=0A=0A=0A> =0A> Thanks much..!!=0A> =0A> =0A> Regards,= =0A> Udaya Kiran=0A> =0A> =0A> =0A> On Tuesday, 25 February 2014 3:07 PM, A= lon Bar-Lev <alonbl@redhat.com> wrote:=0A>=A0 =0A> ----- Original Message -= ----=0A> > From: "Udaya Kiran P" <ukiran770@yahoo.in>=0A> > To: "Alon Bar-L= ev" <alonbl@redhat.com>=0A> > Sent: Tuesday, February 25, 2014 7:00:00 AM= =0A> > Subject: Re: [Users] Host installation failed. SSH session=A0=A0=A0 = closed=0A> > =A0=A0=A0 during=A0=A0=A0 connection (ovirt-node-iso-3.0.3-1.1= .fc19)=0A> > =0A> > Hi Alon,=0A> > =0A> > Appreciate your kind help.=0A> > = =0A> > Here is the output for the test script given by you.=0A> =0A> Thanks= !=0A> =0A> > [root@test-1010155223 ssh]# ./test.sh 10.10.120.244=0A> > 14 [= main] INFO org.apache.sshd.common.util.SecurityUtils - BouncyCastle not=0A>=
registered, using the default JCE provider=0A> > 663 [NioProcessor-2] IN= FO org.apache.sshd.client.session.ClientSessionImpl=0A> > -=0A> > Session c= reated...=0A> > 696 [NioProcessor-2] INFO org.apache.sshd.client.session.Cl= ientSessionImpl=0A> > -=0A> > Server version string: SSH-2.0-OpenSSH_6.2=0A=
702 [NioProcessor-2] INFO org.apache.sshd.client.session.ClientSessionI= mpl=0A> > -=0A> > Received SSH_MSG_KEXINIT=0A> > 737 [NioProcessor-2] INFO = org.apache.sshd.client.kex.DHG1 - Send=0A> > SSH_MSG_KEXDH_INIT=0A> > 740 [= NioProcessor-2] INFO org.apache.sshd.client.kex.DHG1 - Received=0A> > SSH_M= SG_KEXDH_REPLY=0A> > Sun DSA Public Key=0A> =0A> Yes... as I suspected we g= et DSA key instead of RSA, and no additional key,=0A> can we make sure:=0A>= =0A> Please also send me the output of:=0A> # ssh-keyscan -v 10.10.120.244= =0A> =0A> Although I must admit that it will be better to support DSA as we= ll.. it is=0A> the first time I know that there is no RSA key.=0A> =0A> Tha= nk you for your patience!=0A> Alon --1733456068-469654921-1393323540=:98302 Content-Type: text/html; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable
root@test-1010155223</a> ~]# ssh-keyscan -v 10.10.120.244<br clear=3D"none= ">> debug1: match: OpenSSH_6.2 pat OpenSSH*<br clear=3D"none">> # 10.= 10.120.244 SSH-2.0-OpenSSH_6.2<br clear=3D"none">> debug1: Enabling comp= atibility mode for protocol 2.0<br clear=3D"none">> debug1: SSH2_MSG_KEX= INIT sent<br clear=3D"none">> debug1: SSH2_MSG_KEXINIT received<br clear= =3D"none">> debug1: kex: server->client aes128-ctr <a shape=3D"rect" = ymailto=3D"mailto:hmac-md5-etm@openssh.com" href=3D"mailto:hmac-md5-etm@ope= nssh.com">hmac-md5-etm@openssh.com</a> none<br clear=3D"none">> debug1: = kex: client->server aes128-ctr <a shape=3D"rect" ymailto=3D"mailto:hmac-md5-etm@openssh.com" h= ref=3D"mailto:hmac-md5-etm@openssh.com">hmac-md5-etm@openssh.com</a> none<b= r clear=3D"none">> no hostkey alg<br clear=3D"none">> debug1: match: = OpenSSH_6.2 pat OpenSSH*<br clear=3D"none">> # 10.10.120.244 SSH-2.0-Ope= nSSH_6.2<br clear=3D"none">> debug1: SSH2_MSG_KEXINIT sent<br clear=3D"n= one">> debug1: SSH2_MSG_KEXINIT received<br clear=3D"none">> debug1: = kex: server->client aes128-ctr <a shape=3D"rect" ymailto=3D"mailto:hmac-= md5-etm@openssh.com" href=3D"mailto:hmac-md5-etm@openssh.com">hmac-md5-etm@= openssh.com</a> none<br clear=3D"none">> debug1: kex: client->server = aes128-ctr <a shape=3D"rect" ymailto=3D"mailto:hmac-md5-etm@openssh.com" hr= ef=3D"mailto:hmac-md5-etm@openssh.com">hmac-md5-etm@openssh.com</a> none<br= clear=3D"none">> bad hostkey alg 'ecdsa-sha2-nistp256'<br clear=3D"none= ">> [<a shape=3D"rect" ymailto=3D"mailto:root@test-1010155223"
<html><body><div style=3D"color:#000; background-color:#fff; font-family:ti= mes new roman, new york, times, serif;font-size:10pt"><div><span>Hi Alon,</= span></div><div style=3D"color: rgb(0, 0, 0); font-size: 13px; font-family:= 'times new roman', 'new york', times, serif; background-color: transparent= ; font-style: normal;"><span><br></span></div><div style=3D"color: rgb(0, 0= , 0); font-size: 13px; font-family: 'times new roman', 'new york', times, s= erif; background-color: transparent; font-style: normal;"><span>I am curren= tly setting up a non ovirt-node host on a different machine on Fedora 19.</= span></div><div style=3D"color: rgb(0, 0, 0); font-size: 13px; font-family:= 'times new roman', 'new york', times, serif; background-color: transparent= ; font-style: normal;"><span><br></span></div><div style=3D"color: rgb(0, 0= , 0); font-size: 13px; font-family: 'times new roman', 'new york', times, s= erif; background-color: transparent; font-style: normal;">I haven't changed sshd settings. </div><div style=3D"color: rgb(0, 0, 0); font-size: 13= px; font-family: 'times new roman', 'new york', times, serif; background-co= lor: transparent; font-style: normal;"><br></div><div style=3D"color: rgb(0= , 0, 0); font-size: 13px; font-family: 'times new roman', 'new york', times= , serif; background-color: transparent; font-style: normal;">I remember exe= cuting setenforce 0. Would that cause this issue?</div><div style=3D"color:= rgb(0, 0, 0); font-size: 13px; font-family: 'times new roman', 'new york',= times, serif; background-color: transparent; font-style: normal;"><br></di= v><div style=3D"color: rgb(0, 0, 0); font-size: 13px; font-family: 'times n= ew roman', 'new york', times, serif; background-color: transparent; font-st= yle: normal;">I am planning to re-install oVirtNode (same 3.0.3 fc19 ISO), = Please let me know if you have any suggestions.</div><div style=3D"color: r= gb(0, 0, 0); font-size: 13px; font-family: 'times new roman', 'new york', times, serif; background-color: transparent; font-style: normal;"><span><b= r></span></div><div style=3D"color: rgb(0, 0, 0); font-size: 13px; font-fam= ily: 'times new roman', 'new york', times, serif; background-color: transpa= rent; font-style: normal;"><span><br></span></div><div style=3D"color: rgb(= 0, 0, 0); font-size: 13px; font-family: 'times new roman', 'new york', time= s, serif; background-color: transparent; font-style: normal;"><span>Regards= ,</span></div><div style=3D"color: rgb(0, 0, 0); font-size: 13px; font-fami= ly: 'times new roman', 'new york', times, serif; background-color: transpar= ent; font-style: normal;"><span>Udaya Kiran</span></div><div class=3D"yahoo= _quoted" style=3D"display: block;"> <br> <br> <div style=3D"font-family: 't= imes new roman', 'new york', times, serif; font-size: 10pt;"> <div style=3D= "font-family: 'times new roman', 'new york', times, serif; font-size: 12pt;= "> <div dir=3D"ltr"> <font size=3D"2" face=3D"Arial"> On Tuesday, 25 Februa= ry 2014 3:39 PM, Alon Bar-Lev <alonbl@redhat.com> wrote:<br> </font> </div> <div= class=3D"y_msg_container"><br clear=3D"none"><br clear=3D"none">----- Orig= inal Message -----<br clear=3D"none">> From: "Udaya Kiran P" <<a shap= e=3D"rect" ymailto=3D"mailto:ukiran770@yahoo.in" href=3D"mailto:ukiran770@y= ahoo.in">ukiran770@yahoo.in</a>><br clear=3D"none">> To: "Alon Bar-Le= v" <<a shape=3D"rect" ymailto=3D"mailto:alonbl@redhat.com" href=3D"mailt= o:alonbl@redhat.com">alonbl@redhat.com</a>>, "Fabian Deutsch" <<a sha= pe=3D"rect" ymailto=3D"mailto:fabiand@redhat.com" href=3D"mailto:fabiand@re= dhat.com">fabiand@redhat.com</a>><br clear=3D"none">> Cc: "users" <= ;<a shape=3D"rect" ymailto=3D"mailto:users@ovirt.org" href=3D"mailto:users@= ovirt.org">users@ovirt.org</a>><br clear=3D"none">> Sent: Tuesday, Fe= bruary 25, 2014 11:49:16 AM<br clear=3D"none">> Subject: Re: [Users] Hos= t installation failed. SSH session = ; closed during connection (ovirt-node-i= so-3.0.3-1.1.fc19)<br clear=3D"none">> <br clear=3D"none">> Hi Alan,<= br clear=3D"none">> <br clear=3D"none">> Here is the output for ssh-k= eyscan,<br clear=3D"none">> <br clear=3D"none">> [<a shape=3D"rect" y= mailto=3D"mailto:root@test-1010155223" href=3D"mailto:root@test-1010155223"= href=3D"mailto:root@test-1010155223">root@test-1010155223</a> ~]#<br clear= =3D"none">> <br clear=3D"none">> Please suggest.<br clear=3D"none"><b= r clear=3D"none">This is strange!!!!!<br clear=3D"none">You do not have PK = at all.<br clear=3D"none">Does it happen for all hosts or just this particu= lar one? Can you please try other non ovirt-node hosts?<br clear=3D"none">I= still think that something was altered at sshd at host side, or there is s= omething wrong with ovirt-node image.<div class=3D"yqt4789111928" id=3D"yqt= fd54251"><br clear=3D"none"><br clear=3D"none">> <br clear=3D"none">>= Thanks much..!!<br clear=3D"none">> <br clear=3D"none">> <br clear= =3D"none">> Regards,<br clear=3D"none">> Udaya Kiran<br clear=3D"none= ">> <br clear=3D"none">> <br clear=3D"none">> <br clear=3D"none">&= gt; On Tuesday, 25 February 2014 3:07 PM, Alon Bar-Lev <<a shape=3D"rect= " ymailto=3D"mailto:alonbl@redhat.com" href=3D"mailto:alonbl@redhat.com">al= onbl@redhat.com</a>> wrote:<br clear=3D"none">> <br clear=3D"none">> ----- Original Message -= ----<br clear=3D"none">> > From: "Udaya Kiran P" <<a shape=3D"rect= " ymailto=3D"mailto:ukiran770@yahoo.in" href=3D"mailto:ukiran770@yahoo.in">= ukiran770@yahoo.in</a>><br clear=3D"none">> > To: "Alon Bar-Lev" &= lt;<a shape=3D"rect" ymailto=3D"mailto:alonbl@redhat.com" href=3D"mailto:al= onbl@redhat.com">alonbl@redhat.com</a>><br clear=3D"none">> > Sent= : Tuesday, February 25, 2014 7:00:00 AM<br clear=3D"none">> > Subject= : Re: [Users] Host installation failed. SSH session close= d<br clear=3D"none">> > during c= onnection (ovirt-node-iso-3.0.3-1.1.fc19)<br clear=3D"none">> > <br c= lear=3D"none">> > Hi Alon,<br clear=3D"none">> > <br clear=3D"n= one">> > Appreciate your kind help.<br clear=3D"none">> > <br c= lear=3D"none">> > Here is the output for the test script given by you= .<br clear=3D"none">> <br clear=3D"none">> Thanks!<br clear=3D"none">> <br clear=3D"none">>= > [<a shape=3D"rect" ymailto=3D"mailto:root@test-1010155223" href=3D"ma= ilto:root@test-1010155223">root@test-1010155223</a> ssh]# ./test.sh 10.10.1= 20.244<br clear=3D"none">> > 14 [main] INFO org.apache.sshd.common.ut= il.SecurityUtils - BouncyCastle not<br clear=3D"none">> > registered,= using the default JCE provider<br clear=3D"none">> > 663 [NioProcess= or-2] INFO org.apache.sshd.client.session.ClientSessionImpl<br clear=3D"non= e">> > -<br clear=3D"none">> > Session created...<br clear=3D"n= one">> > 696 [NioProcessor-2] INFO org.apache.sshd.client.session.Cli= entSessionImpl<br clear=3D"none">> > -<br clear=3D"none">> > Se= rver version string: SSH-2.0-OpenSSH_6.2<br clear=3D"none">> > 702 [N= ioProcessor-2] INFO org.apache.sshd.client.session.ClientSessionImpl<br cle= ar=3D"none">> > -<br clear=3D"none">> > Received SSH_MSG_KEXINI= T<br clear=3D"none">> > 737 [NioProcessor-2] INFO org.apache.sshd.client.kex.DHG1 - Send<br clear= =3D"none">> > SSH_MSG_KEXDH_INIT<br clear=3D"none">> > 740 [Nio= Processor-2] INFO org.apache.sshd.client.kex.DHG1 - Received<br clear=3D"no= ne">> > SSH_MSG_KEXDH_REPLY<br clear=3D"none">> > Sun DSA Publi= c Key<br clear=3D"none">> <br clear=3D"none">> Yes... as I suspected = we get DSA key instead of RSA, and no additional key,<br clear=3D"none">>= ; can we make sure:<br clear=3D"none">> <br clear=3D"none">> Please a= lso send me the output of:<br clear=3D"none">> # ssh-keyscan -v 10.10.12= 0.244<br clear=3D"none">> <br clear=3D"none">> Although I must admit = that it will be better to support DSA as well.. it is<br clear=3D"none">>= ; the first time I know that there is no RSA key.<br clear=3D"none">> <b= r clear=3D"none">> Thank you for your patience!<br clear=3D"none">> A= lon</div><br><br></div> </div> </div> </div> </div></body></html> --1733456068-469654921-1393323540=:98302--