search

microsoft / vscode-remote-release

Visual Studio Code Remote Development: Open any folder in WSL, in a Docker container, or on a remote machine using SSH and take advantage of VS Code's full feature set.
https://aka.ms/vscode-remote
Other
3.69k stars 296 forks source link

[Remote-SSH Bug]: "SSL_CTX_new_ex", reason: "library has no ciphers" #10343

Closed LiveFreeAndRoam closed 1 month ago

LiveFreeAndRoam commented 1 month ago

Is there an existing issue for this bug?

Required Troubleshooting Steps

Connect Locally

It connects successfully

->

No response

Expected Behavior

VSCode server runs.

Steps To Reproduce

I am connecting to a server that has been modified for high-security mode. I can SSH to the server. However, the high-security mode is causing VSCode to not fully connect. Is it possible to use VSCode to connect to servers that are configured this way?

Please see the errors in the log below.

Remote-SSH Log

Remote-SSH Log

``` [12:43:41.590] > Starting VS Code CLI... > printenv: > SHELL=/bin/sh > PWD=/home/root > LOGNAME=root > HOME=/home/root > SSH_CONNECTION=10.10.20.30 58968 10.100.200.111 22 > USER=root > SHLVL=0 > SSH_CLIENT=10.110.20.30 58968 22 > PATH=/usr/bin:/bin:/usr/sbin:/sbin > _=/usr/bin/printenv [12:43:41.606] > Removing old logfile at /store/.vscode-server/.cli.38c31bc77e0dd6ae88a4e9cc93428 > cc27a56ba40.log [12:43:41.620] > Spawned remote CLI: 748586 [12:43:41.667] > Waiting for server log... [12:43:41.730] > main: line 406: kill: (748586) - No such process [12:43:41.746] > Exec server process not found > thread 'main' panicked at src/bin/code/main.rs:47:14: > called `Result::unwrap()` on an `Err` value: reqwest::Error { kind: Builder, sou > rce: Normal(ErrorStack([Error { code: 167772321, library: "SSL routines", functi > on: "SSL_CTX_new_ex", reason: "library has no ciphers", file: "../src/nssl-3.1.4 > -c5488d00d9.clean/ssl/ssl_lib.c", line: 3291 }])) } > note: run with `RUST_BACKTRACE=1` environment variable to display a backtrace [12:43:41.754] > > afdff4b0992d: start [12:43:41.765] > > listeningOn==== > osReleaseId==linux== > arch==aarch64== > vscodeArch==arm64== > bitness==64== > tmpDir==/tmp== > platform==linux== > unpackResult==== > didLocalDownload==0== > downloadTime==== > installTime==== > serverStartTime==167== > execServerToken==1a111a11-1a11-11aa-aa1a-11a1a1111aa1== > platformDownloadPath==cli-alpine-arm64== [12:43:41.777] > [12:43:41.882] > afdff4b0992d: end [12:43:41.882] Received install output: listeningOn==== osReleaseId==linux== arch==aarch64== vscodeArch==arm64== bitness==64== tmpDir==/tmp== platform==linux== unpackResult==== didLocalDownload==0== downloadTime==== installTime==== serverStartTime==167== execServerToken==1a111a11-1a11-11aa-aa1a-11a1a1111aa1== platformDownloadPath==cli-alpine-arm64== [12:43:41.883] Failed to parse remote port from server output [12:43:41.883] Exec server for ssh-remote+myserver failed: Error [12:43:41.883] Error opening exec server for ssh-remote+myserver: Error ```

Anything else?

No response

joshspicer commented 1 month ago

@LiveFreeAndRoam are you able to provide more information on this "high-security mode" you're running in? It may help us evaulate if its feasible for us to support your environment. From my read of the log, there are no SSL ciphers available for our VS Code CLI to create a request object against

cc/ @connor4312

LiveFreeAndRoam commented 1 month ago

[EDITED]

It's related to FIPS.

I will try to collect more details.

Does VSCode truly need the ciphers? SSH works fine. Why does VSCode need more than SSH?

connor4312 commented 1 month ago

TLS is needed to retrieve the VS Code server for the client version on the remote side

vs-code-engineering[bot] commented 1 month ago

This issue has been closed automatically because it needs more information and has not had recent activity. See also our issue reporting guidelines.

Happy Coding!