Re: what does BUG_SSH2_HMAC do?
- From: Simon Tatham <anakin@xxxxxxxxx>
- Date: 21 Jul 2007 17:36:29 +0100 (BST)
yawnmoth <terra1024@xxxxxxxxx> wrote:
I'm trying to figure out what BUG_SSH2_HMAC does in PuTTy's SSH.c[...]
and... well, I can't.
const static struct ssh_mac *macs[] = {
&ssh_sha1, &ssh_md5, &ssh_mac_none
};
const static struct ssh_mac *buggymacs[] = {
&ssh_sha1_buggy, &ssh_md5, &ssh_mac_none
};
`macs' is the usual list of MAC algorithms supported by PuTTY, and
offered to the server in the KEXINIT list.
`buggymacs' is a replacement for it, used on particular servers
which mis-implement hmac-sha1 and hmac-sha1-96. If you look in
sshsha.c, you'll find that the buggy versions are exactly the same
as the normal hmac-sha1 algorithms, but call sha1_key_buggy instead
of sha1_key, which uses only 16 bytes of key material.
--
Simon Tatham "The voices in my head are trying to ignore me.
<anakin@xxxxxxxxx> But if I keep talking, I can drive them insane."
.
- Follow-Ups:
- Re: what does BUG_SSH2_HMAC do?
- From: yawnmoth
- Re: what does BUG_SSH2_HMAC do?
- References:
- what does BUG_SSH2_HMAC do?
- From: yawnmoth
- what does BUG_SSH2_HMAC do?
- Prev by Date: what does BUG_SSH2_HMAC do?
- Next by Date: Re: sshd starting errors
- Previous by thread: what does BUG_SSH2_HMAC do?
- Next by thread: Re: what does BUG_SSH2_HMAC do?
- Index(es):
Relevant Pages
|
|
