EldoS | Feel safer!

Software components for data protection, secure storage and transfer

ERROR_SSH_INVALID_VERSION

Also by EldoS: CallbackProcess
A component to control process creation and termination in Windows and .NET applications.
#11251
Posted: 10/06/2009 10:11:14
by Mike Scriven (Standard support level)
Joined: 05/19/2006
Posts: 102

Here is the response from the customer, don't know how useful it is:

BDML02::SYSMGR> ucx show ver/all

HP TCP/IP Services for OpenVMS Industry Standard 64 Version V5.6 - ECO 2
on an HP rx6600 (1.59GHz/9.0MB) running OpenVMS V8.3

Image name Image ID Link Date Image location

...

Secure Shell:
TCPIP$SSH_SCP2;1 "V5.6-ECO2" 2-AUG-2007 SYS$COMMON:[SYSEXE]
TCPIP$SSH_SFTP-SERVER2;1 "V5.6-ECO2" 2-AUG-2007 SYS$COMMON:[SYSEXE]
TCPIP$SSH_SFTP2;1 "V5.6-ECO2" 2-AUG-2007 SYS$COMMON:[SYSEXE]
TCPIP$SSH_SSH-ADD2;1 "V5.6-ECO2" 2-AUG-2007 SYS$COMMON:[SYSEXE]
TCPIP$SSH_SSH-AGENT2;1 "V5.6-ECO2" 2-AUG-2007 SYS$COMMON:[SYSEXE]
TCPIP$SSH_SSH-KEYGEN2;1 "V5.6-ECO2" 2-AUG-2007 SYS$COMMON:[SYSEXE]
TCPIP$SSH_SSH-SIGNER2;1 "V5.6-ECO2" 2-AUG-2007 SYS$COMMON:[SYSEXE]
TCPIP$SSH_SSH2;1 "V5.6-ECO2" 2-AUG-2007 SYS$COMMON:[SYSEXE]
TCPIP$SSH_SSHD2;1 "V5.6-ECO2" 2-AUG-2007 SYS$COMMON:[SYSEXE]
#11253
Posted: 10/06/2009 11:17:00
by Ken Ivanov (EldoS Corp.)

The customer provided you with the OS version. It would be good to know the version of SSH server as well (please just check the value of ElSSHClientX.ServerSoftwareName property).
#11264
Posted: 10/07/2009 10:26:23
by Mike Scriven (Standard support level)
Joined: 05/19/2006
Posts: 102

The customer has reported that their firewall is losing packets. They have corrected it and it fixed the problem.

Thanks for your assistance and my apologies for wasting your time.

Regards
Mike Scriven
#11294
Posted: 10/09/2009 09:42:29
by Mike Scriven (Standard support level)
Joined: 05/19/2006
Posts: 102

Further to this the customer is still getting the error, but apparently it is caused by an idle timeout. My app is reporting "SSH error 11 - invalid packet size" but when PuTTY gets the error it reports "Server sent disconnect message type 11 (by application): "Idle timeout exceeded.".

Is the SSH error 11 misdocumented?

Thanks
Mike Scriven
#11297
Posted: 10/09/2009 10:21:56
by Mykola Olshevsky (Basic support level)
Joined: 07/07/2005
Posts: 450

No, it is not misdocumented, it is just constant collision - for SSH disconnect message code 11 means SSH_DISCONNECT_BY_APPLICATION, but for error code it states for ERROR_SSH_INVALID_PACKET_SIZE. And both these error codes are returned via one OnError event.
#11298
Posted: 10/09/2009 10:27:36
by Mike Scriven (Standard support level)
Joined: 05/19/2006
Posts: 102

Is there any way to tell which error it is then?
#11299
Posted: 10/09/2009 10:43:12
by Mykola Olshevsky (Basic support level)
Joined: 07/07/2005
Posts: 450

At the moment you can check value of ServerCloseReason property for the error description.
#11441
Posted: 10/23/2009 12:54:34
by Mike Scriven (Standard support level)
Joined: 05/19/2006
Posts: 102

I think I may have found what's causing this error. After the client has been connected to the server for exactly 2 hours some sort of SSH conversation is started (I can't tell what it is since I can't see the unencrypted data). During this conversation the user types something into my app which then sends it to the server. This causes the error and subsequent disconnect.

Is there any way I can determine if it's safe to send data. I see there is a CanSend function but it's not in the ActiveX version.

Thanks
Mike Scriven
#11442
Posted: 10/23/2009 13:03:51
by Eugene Mayevski (EldoS Corp.)

The only way to know if you can send anything to the socket, is attempt to send it. This is the way TCP/IP protocols work.


Sincerely yours
Eugene Mayevski
#11443
Posted: 10/23/2009 13:16:16
by Mike Scriven (Standard support level)
Joined: 05/19/2006
Posts: 102

I guess I didn't make myself clear. I know I can send it since the socket is open (I'm using my own socket). I'm sending it via the ElSimpleSSHClientX SendData interface. This interface appears to send my data even though it is also doing some kind of SSH negotiation (probably a key-reexchange). Is that acceptable in the SSH protocol?

Mike
Also by EldoS: RawDisk
Access locked and protected files in Windows, read and write disks and partitions and more.

Reply

Statistics

Topic viewed 8875 times

Number of guests: 1, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!