Opened on Jun 25, 2013 at 2:47:30 PM
Closed on Sep 30, 2013 at 8:58:18 PM
Last modified on Oct 1, 2013 at 6:31:05 AM
#7322 closed enhancement (fixed)
Support authentication with none password
Reported by: | gael.lalire | Owned by: | dkocher |
---|---|---|---|
Priority: | normal | Milestone: | 4.4 |
Component: | sftp | Version: | 4.3.1 |
Severity: | normal | Keywords: | |
Cc: | Architecture: | ||
Platform: |
Description
A sample code with file list support :
import java.util.ArrayList; import java.util.List; import org.apache.sshd.SshServer; import org.apache.sshd.common.NamedFactory; import org.apache.sshd.server.Command; import org.apache.sshd.server.UserAuth; import org.apache.sshd.server.auth.UserAuthNone; import org.apache.sshd.server.command.ScpCommandFactory; import org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider; import org.apache.sshd.server.sftp.SftpSubsystem; public class SFTP { public static void main(final String[] args) throws Exception { SshServer sshd = SshServer.setUpDefaultServer(); sshd.setPort(1111); sshd.setKeyPairProvider(new SimpleGeneratorHostKeyProvider("hostkey.ser")); List<NamedFactory<UserAuth>> userAuthFactories = new ArrayList<NamedFactory<UserAuth>>(); userAuthFactories.add(new UserAuthNone.Factory()); sshd.setUserAuthFactories(userAuthFactories); sshd.setCommandFactory(new ScpCommandFactory()); List<NamedFactory<Command>> namedFactoryList = new ArrayList<NamedFactory<Command>>(); namedFactoryList.add(new SftpSubsystem.Factory()); sshd.setSubsystemFactories(namedFactoryList); sshd.start(); } }
FileZilla & Nautilus can list files but not Cyberduck. I get an authentification fail message on Cyberduck whereas server log say authentification is successful.
Change History (11)
comment:1 Changed on Jun 25, 2013 at 2:50:46 PM by dkocher
comment:2 follow-up: ↓ 4 Changed on Jun 25, 2013 at 3:08:41 PM by gael.lalire
Hello, I have no log in the log drawer.
I first get message : Discordance de clé dhôte: {0} La clé dhôte fournie est {0}.
Which is a minor bug too because {0} is not evaluated.
Then I click on "Permettre" and Cyberduck ask me a user and password (not needed with server conf), so I use a random user name and click on "Connexion" : the connection dialog reopen.
comment:3 Changed on Jun 25, 2013 at 3:19:09 PM by gael.lalire
Server side log :
17:14:33.763 [main] INFO o.a.sshd.common.util.SecurityUtils - BouncyCastle not registered, using the default JCE provider 17:14:49.580 [NioProcessor-2] INFO o.a.s.server.session.ServerSession - Session created from /127.0.0.1:3539 17:14:49.593 [NioProcessor-2] INFO o.a.s.s.k.SimpleGeneratorHostKeyProvider - Generating host key... 17:14:49.621 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Client version string: SSH-2.0-Cyberduck/4.3.1 (Mac OS X/10.6.8) (i386) 17:14:49.621 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Received packet SSH_MSG_KEXINIT 17:14:49.622 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Received SSH_MSG_KEXINIT 17:14:49.655 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Received packet SSH_MSG_KEXDH_INIT 17:14:49.656 [NioProcessor-2] DEBUG org.apache.sshd.server.kex.DHG1 - Received SSH_MSG_KEXDH_INIT 17:14:49.666 [NioProcessor-2] DEBUG org.apache.sshd.server.kex.DHG1 - K_S: 00 00 00 07 73 73 68 2d 64 73 73 00 00 00 81 00 fd 7f 53 81 1d 75 12 29 52 df 4a 9c 2e ec e4 e7 f6 11 b7 52 3c ef 44 00 c3 1e 3f 80 b6 51 26 69 45 5d 40 22 51 fb 59 3d 8d 58 fa bf c5 f5 ba 30 f6 cb 9b 55 6c d7 81 3b 80 1d 34 6f f2 66 60 b7 6b 99 50 a5 a4 9f 9f e8 04 7b 10 22 c2 4f bb a9 d7 fe b7 c6 1b f8 3b 57 e7 c6 a8 a6 15 0f 04 fb 83 f6 d3 c5 1e c3 02 35 54 13 5a 16 91 32 f6 75 f3 ae 2b 61 d7 2a ef f2 22 03 19 9d d1 48 01 c7 00 00 00 15 00 97 60 50 8f 15 23 0b cc b2 92 b9 82 a2 eb 84 0b f0 58 1c f5 00 00 00 81 00 f7 e1 a0 85 d6 9b 3d de cb bc ab 5c 36 b8 57 b9 79 94 af bb fa 3a ea 82 f9 57 4c 0b 3d 07 82 67 51 59 57 8e ba d4 59 4f e6 71 07 10 81 80 b4 49 16 71 23 e8 4c 28 16 13 b7 cf 09 32 8c c8 a6 e1 3c 16 7a 8b 54 7c 8d 28 e0 a3 ae 1e 2b b3 a6 75 91 6e a3 7f 0b fa 21 35 62 f1 fb 62 7a 01 24 3b cc a4 f1 be a8 51 90 89 a8 83 df e1 5a e5 9f 06 92 8b 66 5e 80 7b 55 25 64 01 4c 3b fe cf 49 2a 00 00 00 81 00 d0 af 9c 6f c4 78 7c b4 20 96 17 a6 1b ef 49 31 42 5d 72 e3 8f 01 ea 82 89 5d af 0b fa 38 28 53 a1 ec f5 cb 1a 3f 0b f6 dc ff 18 e6 7e db 0e e2 0b a7 95 1e a8 1b 2e e4 1c dc 5c 69 a9 eb 37 92 d6 40 c6 0f aa ee 3e 0a 33 ec 21 9e 25 b7 54 5a 0e 44 10 f1 75 af be 81 56 19 e6 85 27 11 7b 0d 04 a1 6b ae 26 af fe 5e 36 26 c6 6b eb c0 e8 b9 af bc 46 8a 75 5e dc ff fd 23 99 51 28 ab 89 02 17:14:49.666 [NioProcessor-2] DEBUG org.apache.sshd.server.kex.DHG1 - f: 00 b4 29 d9 ea 94 73 6f 62 91 62 2f 94 91 47 54 3c 99 7c 28 a6 97 26 30 e5 b1 40 6f 7d e7 21 53 6d fc 1e 59 8b 65 69 5b 44 03 45 b0 b2 75 8c 5d c9 61 01 65 de 7c e3 40 f9 85 64 f1 a6 bb e2 0b a5 e1 61 01 ed 70 47 fe 72 86 81 97 41 b4 73 4c 01 1e a7 42 36 99 83 fc 2e a5 d7 c5 2f 12 20 31 9f 07 10 ce e0 bc ea c4 f5 13 d3 b3 74 5f 29 d9 d7 b6 41 c7 eb 38 19 66 30 ab 7d 1a bb fb 7d a6 26 17:14:49.666 [NioProcessor-2] DEBUG org.apache.sshd.server.kex.DHG1 - sigH: 00 00 00 07 73 73 68 2d 64 73 73 00 00 00 28 01 20 f8 f0 71 01 b6 b9 31 9b 0a fa ed f6 71 62 32 41 5a 13 3f dd fd e3 9e 8f 42 c4 f2 77 e9 5f 24 fe d6 5c e0 7b 15 22 17:14:49.666 [NioProcessor-2] DEBUG org.apache.sshd.server.kex.DHG1 - Send SSH_MSG_KEXDH_REPLY 17:14:49.666 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Send SSH_MSG_NEWKEYS # here I accept the key issue and click on connect 17:14:59.772 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Received packet SSH_MSG_NEWKEYS 17:14:59.772 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Received SSH_MSG_NEWKEYS 17:14:59.876 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Received packet SSH_MSG_SERVICE_REQUEST 17:14:59.876 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Received SSH_MSG_SERVICE_REQUEST 'ssh-userauth' 17:14:59.876 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Accepting user authentication request 17:14:59.876 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Authorized authentication methods: none 17:14:59.877 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Received packet SSH_MSG_USERAUTH_REQUEST 17:14:59.877 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Received SSH_MSG_USERAUTH_REQUEST 17:14:59.877 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Authenticating user 'po' with method 'none' 17:14:59.878 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Authentication succeeded 17:14:59.878 [NioProcessor-2] INFO o.a.s.server.session.ServerSession - Session po@/127.0.0.1:3539 authenticated # next clicks on connect produces no log on server side # after clicking on cancel 17:20:50.455 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Closing session 17:20:50.455 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Closing IoSession 17:20:50.456 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - IoSession closed 17:20:50.456 [NioProcessor-2] INFO o.a.s.server.session.ServerSession - Session po@/127.0.0.1:3539 closed
comment:4 in reply to: ↑ 2 Changed on Jun 25, 2013 at 3:40:10 PM by dkocher
Replying to gael.lalire:
Hello, I have no log in the log drawer.
I first get message : Discordance de clé dhôte: {0} La clé dhôte fournie est {0}.
Which is a minor bug too because {0} is not evaluated.
Duplicate for #7288.
comment:5 Changed on Jun 25, 2013 at 3:41:57 PM by dkocher
- Milestone set to 4.3.2
- Status changed from new to assigned
- Summary changed from Unable to list files from apache mina server to Support authentication with none password
- Type changed from defect to enhancement
comment:6 Changed on Jun 25, 2013 at 3:46:26 PM by dkocher
- Resolution set to fixed
- Status changed from assigned to closed
In r11323.
comment:7 Changed on Sep 29, 2013 at 10:16:42 PM by gael.lalire
- Resolution fixed deleted
- Status changed from closed to reopened
Hi, I download a snapshot version (13184) to check and the session creation still fail for Cyberduck. At the first try it communicates with server
00:05:19.914 [NioProcessor-2] INFO o.a.s.server.session.ServerSession - Session created from /127.0.0.1:56695 00:05:19.981 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Client version string: SSH-2.0-Cyberduck/4.4 (Mac OS X/10.6.8) (x86_64) 00:05:20.003 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Received packet SSH_MSG_KEXINIT 00:05:20.004 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Received SSH_MSG_KEXINIT 00:05:20.079 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Received packet SSH_MSG_KEXDH_INIT 00:05:20.079 [NioProcessor-2] DEBUG org.apache.sshd.server.kex.DHG14 - Received SSH_MSG_KEXDH_INIT 00:05:20.202 [NioProcessor-2] DEBUG org.apache.sshd.server.kex.DHG14 - K_S: 00 00 00 07 73 73 68 2d 64 73 73 00 00 00 81 00 ee e2 1f 91 ca 22 4f 85 ee c5 4d 44 df 29 cc 56 60 50 b6 86 d6 be f6 ac 65 a2 71 70 23 a3 67 48 de 46 64 7c 8e d7 46 02 b4 12 fb 5d e1 20 16 51 96 7e 21 f7 22 5e 81 90 d8 92 94 c3 7f 68 02 7e 72 59 3e f1 92 03 a9 9e 57 8e 3a 3b 8a 40 24 05 d7 90 f1 5d 78 08 6f d1 96 bc 47 50 1c e3 f7 21 e8 10 f9 d1 b6 99 32 01 8e 85 8b 37 3f 0c 42 3a 3a c6 bc e9 09 33 ef 71 ea 69 40 ae e0 7e 68 35 00 00 00 15 00 e7 82 01 80 2f fc e7 f4 c7 08 84 53 06 fd bd 5c ed c7 ea 7b 00 00 00 80 3f 94 af 1c 43 84 7c c8 7c 2f 7f 8f 54 77 65 4c c6 ae d2 72 1c 30 51 05 c5 36 a7 65 a4 93 3d 3c d8 be 12 50 62 87 85 c7 52 e3 d2 c4 b7 09 26 e2 88 e7 2f 10 ba ec 4d 9e d5 ba e2 a1 9e 57 99 d6 8e 9d 44 e5 b2 3a 5f dd c4 fc fb 27 f4 5e 52 83 0b 0a bb a6 9b 40 60 76 7f 38 49 1f ed 93 0e 07 fc a1 e7 f9 20 7b 7d f3 d3 d0 79 87 d1 bb f6 3a 75 88 c6 26 e2 7b cb 36 0a 3c 8d ae 34 24 b3 73 00 00 00 81 00 db ea a2 3c 6f d9 26 be e8 34 18 82 0e 91 36 6e e9 e4 66 cb 3a 72 bf 21 27 1e e0 5a 96 4a ff 2a 86 f3 61 54 67 8b 9f 37 4e c9 b1 4c a0 70 66 a1 08 4f 40 93 cf f7 5d e4 7f 62 25 89 07 81 57 5d ee 55 00 23 f3 f0 57 ac e2 26 05 4a ef 7c 95 8e 4d 6a da fe 2d 0b 46 eb 82 bf bb 34 44 2b ee 91 2d 2a 52 f7 1e a0 c1 ac a1 15 a8 f7 b4 80 3a fd 84 5f 3a ec 08 8a 54 bc bb 51 3a 40 9a ac 20 dc 00:05:20.202 [NioProcessor-2] DEBUG org.apache.sshd.server.kex.DHG14 - f: 00 a8 2c 59 45 f2 f2 38 c1 9a 28 a0 0f f1 90 0f 17 22 ed 12 f0 ae 02 e9 4c a2 e2 6a b9 89 4c 92 9a c5 99 c3 7f 10 22 b6 59 f9 da ec 25 df ac 67 63 ba 1f 82 2b cc c8 5e 4a f5 60 f9 e5 48 05 d8 15 1d 5e c0 f5 31 91 0e 4d b8 2c 92 bb f2 50 fe b3 92 f7 bd 6c cc 6d ae 2e 7a b3 58 b8 16 16 a5 8a 57 94 e7 f6 14 20 ea bd 43 81 66 4b eb 06 ea 2c 80 6a b3 27 16 6a 74 51 81 56 68 4e a0 1c d6 1d c7 cb 1f 59 3d 05 74 60 42 d5 f9 72 12 de 8c 02 a2 df 22 cc 03 56 26 5e 1e eb c3 37 0f fd e3 07 33 45 ac 87 88 88 ac 12 ff 20 22 e2 17 af f0 e1 12 10 89 6e b4 9e 1c 43 b8 56 e5 4b b8 e9 ac 7e 89 34 ea a6 57 f2 cb 11 0b e0 3f 1c 6b 6f d6 c1 bd 5b c5 5f 81 25 7d 33 ae ed 03 76 8e a5 5c a8 04 e5 0b 87 a3 b9 d7 1b 9e 1c 8c 51 98 55 03 aa ac 7d 3b 62 9d a0 55 4e 68 20 77 bf 01 11 c6 16 00:05:20.202 [NioProcessor-2] DEBUG org.apache.sshd.server.kex.DHG14 - sigH: 00 00 00 07 73 73 68 2d 64 73 73 00 00 00 28 64 e1 bf 6f 1d 44 9b 4b 03 61 be 37 61 57 17 6d fd ab b3 c8 35 d4 10 ce c8 a3 75 82 65 1a f5 f9 1f b7 f6 1f 86 35 04 c5 00:05:20.202 [NioProcessor-2] DEBUG org.apache.sshd.server.kex.DHG14 - Send SSH_MSG_KEXDH_REPLY 00:05:20.203 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Send SSH_MSG_NEWKEYS 00:05:20.254 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Received packet SSH_MSG_NEWKEYS 00:05:20.254 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Received SSH_MSG_NEWKEYS 00:05:20.300 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Received packet SSH_MSG_SERVICE_REQUEST 00:05:20.301 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Received SSH_MSG_SERVICE_REQUEST 'ssh-userauth' 00:05:20.301 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Accepting user authentication request 00:05:20.302 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Authorized authentication methods: none 00:05:20.303 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Received packet SSH_MSG_USERAUTH_REQUEST 00:05:20.304 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Received SSH_MSG_USERAUTH_REQUEST 00:05:20.304 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Authenticating user 'admin' with method 'none' 00:05:20.305 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Authentication succeeded 00:05:20.306 [NioProcessor-2] INFO o.a.s.server.session.ServerSession - Session admin@/127.0.0.1:56695 authenticated
but it is redirecting on login fail window (maybe an issue with validate ?).
Each try to connect produce nothing and a cancel close the server session :
00:14:02.720 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Closing session 00:14:02.722 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - Closing IoSession 00:14:02.723 [NioProcessor-2] DEBUG o.a.s.server.session.ServerSession - IoSession closed 00:14:02.723 [NioProcessor-2] INFO o.a.s.server.session.ServerSession - Session admin@/127.0.0.1:56695 closed
comment:8 Changed on Sep 30, 2013 at 8:58:18 PM by dkocher
- Resolution set to fixed
- Status changed from reopened to closed
Reworked fix in r13191. Check Anonymous login in the bookmark of login prompt.
comment:9 follow-ups: ↓ 10 ↓ 11 Changed on Sep 30, 2013 at 11:07:38 PM by gael.lalire
Hello, I got file listing with sample example. However this is because server provides 'none' authentication method, when testing with 'publickey' it does not work. In addition checking the private key should disable password box, the public key authentication is user scoped.
Should I open a new bug for publickey authentication ?
comment:10 in reply to: ↑ 9 Changed on Oct 1, 2013 at 6:30:09 AM by dkocher
Replying to gael.lalire:
Hello, I got file listing with sample example. However this is because server provides 'none' authentication method
So this issue is fixed?
comment:11 in reply to: ↑ 9 Changed on Oct 1, 2013 at 6:31:05 AM by dkocher
Replying to gael.lalire:
when testing with 'publickey' it does not work. In addition checking the private key should disable password box, the public key authentication is user scoped.
The password is to decrypt the private key if it is encrypted.
Should I open a new bug for publickey authentication ?
Yes, please file new bugs.
Please post the transcript from the log drawer (⌘-L).