RomSShell 5.40 client - any experience with key exchange issue?

"denis bider \(Bitvise\)" <ietf-ssh3@denisbider.com> Tue, 16 May 2017 05:08 UTC

Return-Path: <bounces-ietf-ssh-owner-secsh-tyoxbijeg7-archive=lists.ietf.org@NetBSD.org>
X-Original-To: ietfarch-secsh-tyoxbijeg7-archive@ietfa.amsl.com
Delivered-To: ietfarch-secsh-tyoxbijeg7-archive@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 420CD129B3A for <ietfarch-secsh-tyoxbijeg7-archive@ietfa.amsl.com>; Mon, 15 May 2017 22:08:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.39
X-Spam-Level:
X-Spam-Status: No, score=-1.39 tagged_above=-999 required=5 tests=[BAYES_50=0.8, DKIM_SIGNED=0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001, T_DKIM_INVALID=0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=fail (2048-bit key) reason="fail (body has been altered)" header.d=denisbider.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wowhKjCuuGnb for <ietfarch-secsh-tyoxbijeg7-archive@ietfa.amsl.com>; Mon, 15 May 2017 22:08:37 -0700 (PDT)
Received: from mail.netbsd.org (mail.netbsd.org [199.233.217.200]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 45E7512EAAF for <secsh-tyoxbijeg7-archive@lists.ietf.org>; Mon, 15 May 2017 22:06:01 -0700 (PDT)
Received: by mail.netbsd.org (Postfix, from userid 605) id 4C46F8557F; Tue, 16 May 2017 05:05:59 +0000 (UTC)
Delivered-To: ietf-ssh@netbsd.org
Received: by mail.netbsd.org (Postfix, from userid 1347) id F162F84D75; Tue, 16 May 2017 05:05:58 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1]) by mail.netbsd.org (Postfix) with ESMTP id EDC9E85692 for <ietf-ssh@netbsd.org>; Mon, 15 May 2017 11:34:57 +0000 (UTC)
X-Virus-Scanned: amavisd-new at netbsd.org
Authentication-Results: mail.netbsd.org (amavisd-new); dkim=pass (2048-bit key) header.d=denisbider.com
Received: from mail.netbsd.org ([127.0.0.1]) by localhost (mail.netbsd.org [127.0.0.1]) (amavisd-new, port 10025) with ESMTP id 8wyDr5NO0GhQ for <ietf-ssh@netbsd.org>; Mon, 15 May 2017 11:34:57 +0000 (UTC)
Received: from skroderider.denisbider.com (skroderider.denisbider.com [50.18.172.175]) (using TLSv1.1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.netbsd.org (Postfix) with ESMTPS id 486AE84CFB for <ietf-ssh@netbsd.org>; Mon, 15 May 2017 11:34:57 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=denisbider.com; s=mail; h=from:subject:date:message-id:to:mime-version:content-type; bh=BoelfvKNtpzwmdRSkvk1zg9SJUANHYlpbetbAToscOg=; b=h3XzAoaFjFnu+2Up2is9Y/s7gMDnXYQENtKqDefhPDYCuR0rkoL7lawJcg6YDtDHv3IBPemQsJxSd EwhlUo2u3+nS4aXZVeaIZjlOsvJB3Alo3ZqqjgMha1vEB09iSebsHaEJ1OHhAbuIhkq4Tpr7XY9mgc PW3E4AJWXPJIzuRx/AEJn1axfCA39bwoaB4RWTojmhoBCZXRaCREAWUVCDmPUquyFisPb/VrdsAqNt xJqPsEkVYXCJUCdg7ao4JTbqdL/VUDXlyH1Od6w1vusL+byCeDYUQEmva+Uj1ausLo8WAfhH9sKuM0 WhYgvbMgZptysB49EZ6njWsV2i34Rtg==
X-Footer: ZGVuaXNiaWRlci5jb20=
Received: from localhost ([127.0.0.1]) by skroderider.denisbider.com with ESMTPSA (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256 bits)) for ietf-ssh@netbsd.org; Mon, 15 May 2017 12:34:51 +0100
Message-ID: <37769EE919F4477A8CF86F6CF05F7128@Khan>
From: "denis bider (Bitvise)" <ietf-ssh3@denisbider.com>
To: ietf-ssh@netbsd.org
Subject: RomSShell 5.40 client - any experience with key exchange issue?
Date: Mon, 15 May 2017 05:34:03 -0600
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_NextPart_000_007C_01D2CD3C.DD0D64A0"
X-Priority: 3
X-MSMail-Priority: Normal
Importance: Normal
X-Mailer: Microsoft Windows Live Mail 16.4.3528.331
X-MimeOLE: Produced By Microsoft MimeOLE V16.4.3528.331
Sender: ietf-ssh-owner@NetBSD.org
List-Id: ietf-ssh.NetBSD.org
Precedence: list
List-Unsubscribe: <mailto:majordomo@NetBSD.org?subject=Unsubscribe%20ietf-ssh&body=unsubscribe%20ietf-ssh>

Hey everyone!

I’ve reached out to AllegroSoft, the developers of RomSShell, to see if they can help with this issue, but I can’t expect they will help. Sometimes people do, sometimes not.

So I’m wondering if any other SSH server developer has experienced this issue with the RomSShell client.

This is an SSH implementation that runs on resource constrained hardware, and to which I don’t have source code access. In our case, a user has provided us with information that suggests the following is happening:

- The RomSShell client connects to our server. SSH version strings are exchanged.

- KEXINIT packets are exchanged and diffie-hellman-group1-sha1 is negotiated. (That’s the only key exchange algorithm the client sends. Not sure if this version supports anything else. Perhaps not.)

- diffie-hellman-group1-sha1 key exchange occurs, and from the server’s perspective, is completed successfully. The server sends SSH_MSG_NEWKEYS and waits for the client.

- The client takes a good 25 seconds to think about what the server just sent. Then it replies with SSH_MSG_DISCONNECT, stating reason code SSH_DISCONNECT_PROTOCOL_ERROR, and description: “Not expecting new keys message”.

For comparison – the client is able to connect to other SSH servers, such as OpenSSH; in which case it neither incurs a 25 second delay (the SSH handshake completes promptly) nor sends this protocol error message.

At this point, my first instinct is to try delaying SSH_MSG_NEWKEYS by a second or more, in case the client is not ready to receive NEWKEYS at the same time it’s processing the last DH key exchange message. However, I’m not sure how that would cause a 25 second delay before it sends DISCONNECT.

Does anyone else have experience with this client, and has resolved this issue?

denis