artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: bb32a5e) | patch
OpenSSH 6.5 and 6.6 have a bug that causes ~0.2% of connections
authordjm <djm@openbsd.org>
Fri, 18 Apr 2014 23:52:25 +0000 (23:52 +0000)
committerdjm <djm@openbsd.org>
Fri, 18 Apr 2014 23:52:25 +0000 (23:52 +0000)
commit9d7dda625ccad605b740f9246699242be0503da2
tree510f1b1eb3be6aa894ea36cc1cbed099cc992a1dtree | snapshot
parentbb32a5e6e426d48182e8fa9584cff26b773884e7commit | diff
OpenSSH 6.5 and 6.6 have a bug that causes ~0.2% of connections
using the curve25519-sha256@libssh.org KEX exchange method to fail
when connecting with something that implements the spec properly.

Disable this KEX method when speaking to one of the affected
versions.

reported by Aris Adamantiadis; ok markus@
usr.bin/ssh/compat.c diff | blob | history
usr.bin/ssh/compat.h diff | blob | history
usr.bin/ssh/sshconnect2.c diff | blob | history
usr.bin/ssh/sshd.c diff | blob | history
usr.bin/ssh/version.h diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim