Page MenuHomePhabricator

ProxyCommand for jump host configuration broken
Open, Needs TriagePublic

Description

Using ProxyCommad to configure jump hosts doesn't work. In .ssh/config I've got an entry like

Host jumptoremote
    User me
    HostName remote
    ProxyCommand ssh me@login.company.de -W %h:%p

With that, ssh'ing to "jumptoremote" should first connect to login.company.de and from there to "remote" in a transparent way. Note that there is also the ProxyJump command for that since OpenSSH 7.3, but which is not supported by libssh (on the command line both variants work fine).

I'm not using libssh directly but from KDE's Dolphin (KIO) and was asked to report this bug here. See https://bugzilla.suse.com/show_bug.cgi?id=1082703.

Event Timeline

maiphi created this task.Oct 11 2018, 2:52 PM
asn assigned this task to Jakuje.Tue, Nov 6, 2:12 PM
asn added a subscriber: asn.

Jakub, didn't we already fix this?

asn added a project: Restricted Project.Tue, Nov 6, 2:13 PM
Jakuje added a comment.Tue, Nov 6, 2:23 PM

Probably not. I assume this is not only about configuration parser (which was fixed in several aspects recently), but instead about the way how the proxycommand is implemented in libssh (I am actually not sure how does it work there). The important are errors with ProxyCommand, but for further investigation, some debugging log will be needed:

Socket error: disconnected

The ProxyJump is not implemented at all so the option is ignored now. Implementing it should probably be only about wiring existing things in libssh to implement the IO redirection similar to OpenSSH's "ssh -W".