bugzilla-daemon at bugzilla.mindrot.org
2017-Aug-11 15:00 UTC
[Bug 2757] New: rekey limit clashes with ClientAlive timeouts
https://bugzilla.mindrot.org/show_bug.cgi?id=2757
Bug ID: 2757
Summary: rekey limit clashes with ClientAlive timeouts
Product: Portable OpenSSH
Version: 7.5p1
Hardware: Other
OS: Linux
Status: NEW
Severity: enhancement
Priority: P5
Component: sshd
Assignee: unassigned-bugs at mindrot.org
Reporter: jjelen at redhat.com
Created attachment 3036
--> https://bugzilla.mindrot.org/attachment.cgi?id=3036&action=edit
proposed patch
Reproducer:
1. Start a server:
/usr/sbin/sshd -D -ddd -p 8022 -o "ClientAliveCountMax=0" -o
"ClientAliveInterval=900" -o "RekeyLimit=default 45s" -e
2. Connect with client
ssh -p 8022 root at localhost "date; while :; do sleep 10; date;
done"
Actual result:
No rekey happens, connection is dropped with error
Timeout, client not responding.
Expected result:
Rekey happens in 45 seconds, the connection is not dropped
Diagnostics:
The function wait_until_can_do_something() is selecting the timeout for
select() function, but sets client_alive_scheduled even if it is
scheduled for later than rekey should happen.
Proposed solution:
The client_alive_scheduled variable should be set only if the time is
lower than the time for external event (rekeying). The attached patch
resolved the problem for me and with openssh-7.4 all tests passed.
--
You are receiving this mail because:
You are watching the assignee of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2017-Aug-18 03:23 UTC
[Bug 2757] rekey limit clashes with ClientAlive timeouts
https://bugzilla.mindrot.org/show_bug.cgi?id=2757
Darren Tucker <dtucker at zip.com.au> changed:
What |Removed |Added
----------------------------------------------------------------------------
Blocks| |2698
CC| |dtucker at zip.com.au
--- Comment #1 from Darren Tucker <dtucker at zip.com.au> ---
Looks reasonable to me, adding to the list for 7.6.
Referenced Bugs:
https://bugzilla.mindrot.org/show_bug.cgi?id=2698
[Bug 2698] Tracking bug for OpenSSH 7.6 release
--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2017-Sep-22 03:29 UTC
[Bug 2757] rekey limit clashes with ClientAlive timeouts
https://bugzilla.mindrot.org/show_bug.cgi?id=2757
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Blocks| |2782
Referenced Bugs:
https://bugzilla.mindrot.org/show_bug.cgi?id=2782
[Bug 2782] Tracking bug for OpenSSH 7.7 release
--
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2017-Sep-22 03:34 UTC
[Bug 2757] rekey limit clashes with ClientAlive timeouts
https://bugzilla.mindrot.org/show_bug.cgi?id=2757
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Blocks|2698 |
Referenced Bugs:
https://bugzilla.mindrot.org/show_bug.cgi?id=2698
[Bug 2698] Tracking bug for OpenSSH 7.6 release
--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2018-Apr-06 03:09 UTC
[Bug 2757] rekey limit clashes with ClientAlive timeouts
https://bugzilla.mindrot.org/show_bug.cgi?id=2757
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Blocks| |2852
Referenced Bugs:
https://bugzilla.mindrot.org/show_bug.cgi?id=2852
[Bug 2852] Tracking bug for OpenSSH 7.8 release
--
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2018-Apr-06 03:12 UTC
[Bug 2757] rekey limit clashes with ClientAlive timeouts
https://bugzilla.mindrot.org/show_bug.cgi?id=2757
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Blocks|2782 |
--- Comment #2 from Damien Miller <djm at mindrot.org> ---
Move to OpenSSH 7.8 tracking bug
Referenced Bugs:
https://bugzilla.mindrot.org/show_bug.cgi?id=2782
[Bug 2782] Tracking bug for OpenSSH 7.7 release
--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2018-Aug-10 01:38 UTC
[Bug 2757] rekey limit clashes with ClientAlive timeouts
https://bugzilla.mindrot.org/show_bug.cgi?id=2757
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Blocks| |2893
--- Comment #3 from Damien Miller <djm at mindrot.org> ---
Retarget remaining bugs planned for 7.8 release to 7.9
Referenced Bugs:
https://bugzilla.mindrot.org/show_bug.cgi?id=2893
[Bug 2893] Tracking bug for 7.9 release
--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2018-Aug-10 01:38 UTC
[Bug 2757] rekey limit clashes with ClientAlive timeouts
https://bugzilla.mindrot.org/show_bug.cgi?id=2757 --- Comment #4 from Damien Miller <djm at mindrot.org> --- Retarget remaining bugs planned for 7.8 release to 7.9 -- You are receiving this mail because: You are watching the assignee of the bug. You are watching someone on the CC list of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2018-Aug-10 01:39 UTC
[Bug 2757] rekey limit clashes with ClientAlive timeouts
https://bugzilla.mindrot.org/show_bug.cgi?id=2757
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Blocks|2852 |
Referenced Bugs:
https://bugzilla.mindrot.org/show_bug.cgi?id=2852
[Bug 2852] Tracking bug for OpenSSH 7.8 release
--
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2018-Oct-19 06:13 UTC
[Bug 2757] rekey limit clashes with ClientAlive timeouts
https://bugzilla.mindrot.org/show_bug.cgi?id=2757
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Blocks| |2915
--- Comment #5 from Damien Miller <djm at mindrot.org> ---
Retarget unfinished bugs to OpenSSH 8.0
Referenced Bugs:
https://bugzilla.mindrot.org/show_bug.cgi?id=2915
[Bug 2915] Tracking bug for 8.0 release
--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2018-Oct-19 06:14 UTC
[Bug 2757] rekey limit clashes with ClientAlive timeouts
https://bugzilla.mindrot.org/show_bug.cgi?id=2757 --- Comment #6 from Damien Miller <djm at mindrot.org> --- Retarget unfinished bugs to OpenSSH 8.0 -- You are receiving this mail because: You are watching someone on the CC list of the bug. You are watching the assignee of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2018-Oct-19 06:15 UTC
[Bug 2757] rekey limit clashes with ClientAlive timeouts
https://bugzilla.mindrot.org/show_bug.cgi?id=2757
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Blocks|2893 |
--- Comment #7 from Damien Miller <djm at mindrot.org> ---
Retarget unfinished bugs to OpenSSH 8.0
Referenced Bugs:
https://bugzilla.mindrot.org/show_bug.cgi?id=2893
[Bug 2893] Tracking bug for 7.9 release
--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2019-Mar-06 16:42 UTC
[Bug 2757] rekey limit clashes with ClientAlive timeouts
https://bugzilla.mindrot.org/show_bug.cgi?id=2757 --- Comment #8 from Jakub Jelen <jjelen at redhat.com> --- ping. Any update on this? -- You are receiving this mail because: You are watching the assignee of the bug. You are watching someone on the CC list of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2019-Mar-27 09:29 UTC
[Bug 2757] rekey limit clashes with ClientAlive timeouts
https://bugzilla.mindrot.org/show_bug.cgi?id=2757
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
CC| |djm at mindrot.org
Resolution|--- |FIXED
--- Comment #9 from Damien Miller <djm at mindrot.org> ---
Patch applied and will be in OpenSSH 8.0 - thanks!
--
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
bugzilla-daemon at mindrot.org
2021-Apr-23 05:02 UTC
[Bug 2757] rekey limit clashes with ClientAlive timeouts
https://bugzilla.mindrot.org/show_bug.cgi?id=2757
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|RESOLVED |CLOSED
--- Comment #10 from Damien Miller <djm at mindrot.org> ---
closing resolved bugs as of 8.6p1 release
--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.