XQuartz X11 forwarding on OS X 10.12
XQuartz X11 forwarding on OS X 10.12
- Subject: XQuartz X11 forwarding on OS X 10.12
- From: Roger Pau Monné <email@hidden>
- Date: Sat, 11 Mar 2017 10:59:04 +0900
Hello,
I'm trying to use ssh X11 forwarding with OS X 10.12 and XQuartz 2.7.11 and I
don't seem to be able to get it to work. The server side is a FreeBSD
12.0-CURRENT VM, running on the same host using xhyve.
On the server side I've added the following to sshd_confg:
X11Forwarding yes
I've also installed xauth on it (plus xeyes in order to test) and the libX11
version on FreeBSD is 1.6.5.
On the client side I'm using the bundled version of ssh from OS X, and the
default set of XQuartz options. I'm using the following command to forward
applications:
$ ssh -vvvv -Y 192.168.64.2 xeyes
OpenSSH_7.3p1, LibreSSL 2.4.1
debug1: Reading configuration data /Users/royger/.ssh/config
debug1: /Users/royger/.ssh/config line 53: Applying options for *
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 20: Applying options for *
debug1: /etc/ssh/ssh_config line 56: Applying options for *
debug2: resolving "192.168.64.2" port 22
debug2: ssh_connect_direct: needpriv 0
debug1: Connecting to 192.168.64.2 [192.168.64.2] port 22.
debug1: Connection established.
debug1: identity file /Users/royger/.ssh/id_rsa type 1
debug1: key_load_public: No such file or directory
debug1: identity file /Users/royger/.ssh/id_rsa-cert type -1
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_7.3
debug1: Remote protocol version 2.0, remote software version OpenSSH_7.2 FreeBSD-20161230
debug1: match: OpenSSH_7.2 FreeBSD-20161230 pat OpenSSH* compat 0x04000000
debug2: fd 3 setting O_NONBLOCK
debug1: Authenticating to 192.168.64.2:22 as 'royger'
debug3: hostkeys_foreach: reading file "/Users/royger/.ssh/known_hosts"
debug3: record_hostkey: found key type ECDSA in file /Users/royger/.ssh/known_hosts:226
debug3: load_hostkeys: loaded 1 keys from 192.168.64.2
debug3: order_hostkeyalgs: prefer hostkeyalgs: email@hidden,email@hidden,email@hidden,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521
debug3: send packet: type 20
debug1: SSH2_MSG_KEXINIT sent
debug3: receive packet: type 20
debug1: SSH2_MSG_KEXINIT received
debug2: local client KEXINIT proposal
debug2: KEX algorithms: email@hidden,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha256,diffie-hellman-group14-sha1,ext-info-c
debug2: host key algorithms: email@hidden,email@hidden,email@hidden,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,email@hidden,email@hidden,ssh-ed25519,rsa-sha2-512,rsa-sha2-256,ssh-rsa
debug2: ciphers ctos: email@hidden,aes128-ctr,aes192-ctr,aes256-ctr,email@hidden,email@hidden,aes128-cbc,aes192-cbc,aes256-cbc,3des-cbc
debug2: ciphers stoc: email@hidden,aes128-ctr,aes192-ctr,aes256-ctr,email@hidden,email@hidden,aes128-cbc,aes192-cbc,aes256-cbc,3des-cbc
debug2: MACs ctos: email@hidden,email@hidden,email@hidden,email@hidden,email@hidden,email@hidden,email@hidden,hmac-sha2-256,hmac-sha2-512,hmac-sha1
debug2: MACs stoc: email@hidden,email@hidden,email@hidden,email@hidden,email@hidden,email@hidden,email@hidden,hmac-sha2-256,hmac-sha2-512,hmac-sha1
debug2: compression ctos: none,email@hidden,zlib
debug2: compression stoc: none,email@hidden,zlib
debug2: languages ctos:
debug2: languages stoc:
debug2: first_kex_follows 0
debug2: reserved 0
debug2: peer server KEXINIT proposal
debug2: KEX algorithms: email@hidden,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group14-sha1
debug2: host key algorithms: ssh-rsa,rsa-sha2-512,rsa-sha2-256,ecdsa-sha2-nistp256,ssh-ed25519
debug2: ciphers ctos: email@hidden,aes128-ctr,aes192-ctr,aes256-ctr,email@hidden,email@hidden,aes128-cbc,aes192-cbc,aes256-cbc
debug2: ciphers stoc: email@hidden,aes128-ctr,aes192-ctr,aes256-ctr,email@hidden,email@hidden,aes128-cbc,aes192-cbc,aes256-cbc
debug2: MACs ctos: email@hidden,email@hidden,email@hidden,email@hidden,email@hidden,email@hidden,email@hidden,hmac-sha2-256,hmac-sha2-512,hmac-sha1
debug2: MACs stoc: email@hidden,email@hidden,email@hidden,email@hidden,email@hidden,email@hidden,email@hidden,hmac-sha2-256,hmac-sha2-512,hmac-sha1
debug2: compression ctos: none,email@hidden
debug2: compression stoc: none,email@hidden
debug2: languages ctos:
debug2: languages stoc:
debug2: first_kex_follows 0
debug2: reserved 0
debug1: kex: algorithm: email@hidden
debug1: kex: host key algorithm: ecdsa-sha2-nistp256
debug1: kex: server->client cipher: email@hidden MAC: <implicit> compression: none
debug1: kex: client->server cipher: email@hidden MAC: <implicit> compression: none
debug3: send packet: type 30
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug3: receive packet: type 31
debug1: Server host key: ecdsa-sha2-nistp256 SHA256:DMXox/ShN+R8MhMawTLXHMXWT94/DRMcgcQlfhvWIHA
debug3: hostkeys_foreach: reading file "/Users/royger/.ssh/known_hosts"
debug3: record_hostkey: found key type ECDSA in file /Users/royger/.ssh/known_hosts:226
debug3: load_hostkeys: loaded 1 keys from 192.168.64.2
debug1: Host '192.168.64.2' is known and matches the ECDSA host key.
debug1: Found key in /Users/royger/.ssh/known_hosts:226
debug3: send packet: type 21
debug2: set_newkeys: mode 1
debug1: rekey after 134217728 blocks
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug3: receive packet: type 21
debug2: set_newkeys: mode 0
debug1: rekey after 134217728 blocks
debug1: SSH2_MSG_NEWKEYS received
debug2: key: /Users/royger/.ssh/id_rsa (0x7ffc2f40bba0), explicit, agent
debug3: send packet: type 5
debug3: receive packet: type 7
debug1: SSH2_MSG_EXT_INFO received
debug1: kex_input_ext_info: server-sig-algs=<rsa-sha2-256,rsa-sha2-512>
debug3: receive packet: type 6
debug2: service_accept: ssh-userauth
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug3: send packet: type 50
debug3: receive packet: type 51
debug1: Authentications that can continue: publickey,keyboard-interactive
debug3: start over, passed a different list publickey,keyboard-interactive
debug3: preferred publickey,keyboard-interactive,password
debug3: authmethod_lookup publickey
debug3: remaining preferred: keyboard-interactive,password
debug3: authmethod_is_enabled publickey
debug1: Next authentication method: publickey
debug1: Offering RSA public key: /Users/royger/.ssh/id_rsa
debug3: send_pubkey_test
debug3: send packet: type 50
debug2: we sent a publickey packet, wait for reply
debug3: receive packet: type 51
debug1: Authentications that can continue: publickey,keyboard-interactive
debug2: we did not send a packet, disable method
debug3: authmethod_lookup keyboard-interactive
debug3: remaining preferred: password
debug3: authmethod_is_enabled keyboard-interactive
debug1: Next authentication method: keyboard-interactive
debug2: userauth_kbdint
debug3: send packet: type 50
debug2: we sent a keyboard-interactive packet, wait for reply
debug3: receive packet: type 60
debug2: input_userauth_info_req
debug2: input_userauth_info_req: num_prompts 1
Password for royger@:
debug3: send packet: type 61
debug3: receive packet: type 60
debug2: input_userauth_info_req
debug2: input_userauth_info_req: num_prompts 0
debug3: send packet: type 61
debug3: receive packet: type 52
debug1: Authentication succeeded (keyboard-interactive).
Authenticated to 192.168.64.2 ([192.168.64.2]:22).
debug1: channel 0: new [client-session]
debug3: ssh_session2_open: channel_new: 0
debug2: channel 0: send open
debug3: send packet: type 90
debug1: Requesting email@hidden
debug3: send packet: type 80
debug1: Entering interactive session.
debug1: pledge: exec
debug3: receive packet: type 80
debug1: client_input_global_request: rtype email@hidden want_reply 0
debug3: receive packet: type 91
debug2: callback start
debug2: x11_get_proto: /opt/X11/bin/xauth list /private/tmp/com.apple.launchd.neK6Mir8A7/org.macosforge.xquartz:0 2>/dev/null
debug1: Requesting X11 forwarding with authentication spoofing.
debug2: channel 0: request x11-req confirm 1
debug3: send packet: type 98
debug2: fd 3 setting TCP_NODELAY
debug3: ssh_packet_set_tos: set IP_TOS 0x10
debug2: client_session2_setup: id 0
debug1: Sending environment.
debug3: Ignored env TERM_PROGRAM
debug3: Ignored env TERM
debug3: Ignored env SHELL
debug3: Ignored env TMPDIR
debug3: Ignored env Apple_PubSub_Socket_Render
debug3: Ignored env TERM_PROGRAM_VERSION
debug3: Ignored env TERM_SESSION_ID
debug3: Ignored env USER
debug3: Ignored env SSH_AUTH_SOCK
debug3: Ignored env __CF_USER_TEXT_ENCODING
debug3: Ignored env PATH
debug3: Ignored env PWD
debug3: Ignored env HOMEBREW_GITHUB_API_TOKEN
debug3: Ignored env EDITOR
debug1: Sending env LANG = en_GB.UTF-8
debug2: channel 0: request env confirm 0
debug3: send packet: type 98
debug3: Ignored env ITERM_PROFILE
debug3: Ignored env XPC_FLAGS
debug3: Ignored env XPC_SERVICE_NAME
debug3: Ignored env SHLVL
debug3: Ignored env HOME
debug3: Ignored env COLORFGBG
debug3: Ignored env ITERM_SESSION_ID
debug3: Ignored env LOGNAME
debug1: Sending env LC_CTYPE = en_GB.UTF-8
debug2: channel 0: request env confirm 0
debug3: send packet: type 98
debug3: Ignored env DISPLAY
debug3: Ignored env _
debug1: Sending command: xeyes
debug2: channel 0: request exec confirm 1
debug3: send packet: type 98
debug2: callback done
debug2: channel 0: open confirm rwindow 0 rmax 32768
debug3: receive packet: type 99
debug2: channel_input_status_confirm: type 99 id 0
debug2: X11 forwarding request accepted on channel 0
debug2: channel 0: rcvd adjust 2097152
debug3: receive packet: type 99
debug2: channel_input_status_confirm: type 99 id 0
debug2: exec request accepted on channel 0
debug2: channel 0: rcvd ext data 163
/usr/local/bin/xauth: (stdin):1: bad display name "unix:10.0" in "remove" command
/usr/local/bin/xauth: (stdin):2: bad display name "unix:10.0" in "add" command
debug2: channel 0: written 163 to efd 7
debug3: receive packet: type 90
debug1: client_input_channel_open: ctype x11 rchan 3 win 65536 max 16384
debug1: client_request_x11: request from 127.0.0.1 48523
debug2: fd 8 setting O_NONBLOCK
debug3: fd 8 is O_NONBLOCK
debug1: channel 1: new [x11]
debug1: confirm x11
debug3: send packet: type 91
debug2: X11 connection uses different authentication protocol.
X11 connection rejected because of wrong authentication.
debug2: X11 rejected 1 i0/o0
debug2: channel 1: read failed
debug2: channel 1: close_read
debug2: channel 1: input open -> drain
debug2: channel 1: ibuf empty
debug2: channel 1: send eof
debug3: send packet: type 96
debug2: channel 1: input drain -> closed
debug2: channel 1: write failed
debug2: channel 1: close_write
debug2: channel 1: output open -> closed
debug2: X11 closed 1 i3/o3
debug2: channel 1: send close
debug3: send packet: type 97
debug3: receive packet: type 97
debug2: channel 1: rcvd close
debug2: channel 1: is dead
debug2: channel 1: garbage collecting
debug1: channel 1: free: x11, nchannels 2
debug3: channel 1: status: The following connections are open:
#0 client-session (t4 r0 i0/0 o0/0 fd 5/6 cc -1)
#1 x11 (t7 r3 i3/0 o3/0 fd 8/8 cc -1)
debug2: channel 0: rcvd ext data 42
debug3: receive packet: type 96
debug2: channel 0: rcvd eof
debug2: channel 0: output open -> drain
debug2: channel 0: obuf_empty delayed efd 7/(42)
Error: Can't open display: localhost:10.0
debug2: channel 0: written 42 to efd 7
debug2: channel 0: obuf empty
debug2: channel 0: close_write
debug2: channel 0: output drain -> closed
debug3: receive packet: type 98
debug1: client_input_channel_req: channel 0 rtype exit-status reply 0
debug3: receive packet: type 98
debug1: client_input_channel_req: channel 0 rtype email@hidden reply 0
debug2: channel 0: rcvd eow
debug2: channel 0: close_read
debug2: channel 0: input open -> closed
debug3: receive packet: type 97
debug2: channel 0: rcvd close
debug3: channel 0: will not send data after close
debug2: channel 0: almost dead
debug2: channel 0: gc: notify user
debug2: channel 0: gc: user detached
debug2: channel 0: send close
debug3: send packet: type 97
debug2: channel 0: is dead
debug2: channel 0: garbage collecting
debug1: channel 0: free: client-session, nchannels 1
debug3: channel 0: status: The following connections are open:
#0 client-session (t4 r0 i3/0 o3/0 fd -1/-1 cc -1)
debug3: send packet: type 1
Transferred: sent 2588, received 2660 bytes, in 0.0 seconds
Bytes per second: sent 82908.4, received 85214.9
debug1: Exit status 1
AFAICT there seems to be some xauth related issues, the FreeBSD version of
xauth is 1.0.10, and the OS X one is 1.0.9.
Thanks, Roger.
_______________________________________________
Do not post admin requests to the list. They will be ignored.
X11-users mailing list (email@hidden)
This email sent to email@hidden