Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

scp fails with "protocol error: filename does not match request"

Tags:

scp

ssh

I have a script that uses SCP to pull a file from a remote Linux host on AWS. After running the same code nightly for about 6 months without issue, it started failing today with protocol error: filename does not match request. I reproduced the issue on some simpler filenames below:

$ scp -i $IDENT $HOST_AND_DIR/"foobar" .
# the file is copied successfully

$ scp -i $IDENT $HOST_AND_DIR/"'foobar'" .
protocol error: filename does not match request
# used to work, i swear...

$ scp -i $IDENT $HOST_AND_DIR/"'foobarbaz'" .
scp: /home/user_redacted/foobarbaz: No such file or directory
# less surprising...

The reason for my single quotes was that I was grabbing a file with spaces in the name originally. To deal with the spaces, I had done $HOST_AND_DIR/"'foo bar'" for many months, but starting today, it would only accept $HOST_AND_DIR/"foo\ bar". So, my issue is fixed, but I'm still curious about what's going on.

I Googled the error message, but I don't see any real mentions of it, which surprises me.

Both hosts involved have OpenSSL 1.0.2g in the output of ssh -v localhost, and bash --version says GNU bash, version 4.3.48(1)-release (x86_64-pc-linux-gnu) Any ideas?

like image 766
dcc310 Avatar asked Feb 08 '19 18:02

dcc310

2 Answers

I ended up having a look through the source code and found the commit where this error is thrown:

GitHub Commit

remote->local directory copies satisfy the wildcard specified by the user.

This checking provides some protection against a malicious server sending unexpected filenames, but it comes at a risk of rejecting wanted files due to differences between client and server wildcard expansion rules.

For this reason, this also adds a new -T flag to disable the check.

They have added a new flag -T that will ignore this new check they've added so it is backwards compatible. However, I suppose we should look and find out why the filenames we're using are flagged as restricted.

like image 67
JBond Avatar answered Nov 13 '22 21:11

JBond

In my case, I had [] characters in the filename that needed to be escaped using one of the options listed here. for example:

scp USERNAME@IP_ADDR:"/tmp/foo\[bar\].txt" /tmp
like image 1
eta32carinae Avatar answered Nov 13 '22 23:11

eta32carinae
Sign in to Comment

Related questions

HowTo: Teamcity + GitHub
How to create SSH tunnel using PuTTY in Windows?
tkinter.TclError: couldn't connect to display "localhost:18.0"
SSH-Keygen "no such file or directory"
git clone from local to remote
X11 forwarding request failed on channel 0
How to split a file using a numeric suffix
PuTTY configuration equivalent to OpenSSH ProxyCommand
Execute command on remote server via ssh
putting a remote file into hadoop without copying it to local disk
Nested SSH session with Paramiko
SSH EC2 asking for password
using ssh keys with scp and ssh
Using BitBucket Pipelines to Deploy onto VPS via SSH Access
Import a local SQL File To MySQL on a Remote Server Using SSH Tunnel
Could not load id_rsa as a RSA1 public key
SSH connection with Java
Can I ssh somewhere, run some commands, and then leave myself a prompt?
How to run an X program from outside the X session (e.g. from the console or SSH) [closed]
Deleting SSH keys terminal

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!