After upgrade to openssl 3.0 (alpha 6), openssh login fails. Bad Packet length: 1868080485 debug3: send packet type 1 ssh_dispatch_run_fatal: connection to <IP> port 22: connection corrupted I enabled debug logging to DEBUG3, but this is the only failure message i am seeing. Openssh version: 8.4p1 openssl version: 3.0.0-alpha6 If there is already a plan to support openssl 3.0, kindly share
Some debugging logs: sshd[1088]: debug1: SSH2_MSG_NEWKEYS sent [preauth] sshd[1088]: debug1: expecting SSH2_MSG_NEWKEYS [preauth] sshd[1088]: debug3: receive packet: type 21 [preauth] sshd[1088]: debug1: SSH2_MSG_NEWKEYS received [preauth] sshd[1088]: debug2: set_newkeys: mode 0 [preauth] sshd[1088]: debug1: rekey in after 4294967296 blocks [preauth] sshd[1088]: debug1: KEX done [preauth] sshd[1088]: debug3: receive packet: type 5 [preauth] sshd[1088]: debug3: send packet: type 6 [preauth] sshd[1088]: Connection closed by <IP> port 48946 [preauth] ---> error happening here sshd[1088]: debug1: do_cleanup [preauth] sshd[1088]: debug3: PAM: sshpam_thread_cleanup entering [preauth] sshd[1088]: debug1: monitor_read_log: child log fd closed With openssl 1.1.1g/1.1.1i, it was working fine. Problem with openssl-3.0.0 (tried alpha6) Kindly suggest.
We're waiting for OpenSSL to rename an incompatible API https://github.com/openssl/openssl/issues/13411 Until then, please consider OpenSSL 3.* unsupported by OpenSSH.
*** This bug has been marked as a duplicate of bug 3238 ***
Hey rajesh, a recent openssl + patch "v2" from https://bugzilla.mindrot.org/show_bug.cgi?id=3238 works for me.
I tried the same of v2 patch, the issue still persists.
Forgot to mention, that chacha20 is broken, too. Make sure to use recent openssl together with my patches: https://github.com/marckleinebudde/openssh-portable/tree/workaround-openssl-3
close bugs that were resolved in OpenSSH 8.5 release cycle