Re: "Host key did not match signature" error during rekey
- From: Chet Vora <chetanvora@xxxxxxxxx>
- Date: Fri, 28 Sep 2007 15:21:35 -0000
receive rekey SSH_MSG_KEXDH_INIT
extract mpint e (as per RFC 4253 section 8 for SSH_MSG_KEXDH_INIT)
save exchange hash H
generate new keys (incoming and outgoing encryption keys, mac keys)
extract mpint f (as required in RFC 4253 section 8 for
SSH_MSG_KEXDH_REPLY)
generate shared secret
generate signature of H
create SSH_MSG_KEXDH_REPLY from server hostkey, mpint f and signature
of F
The last line should read
"create SSH_MSG_KEXDH_REPLY from server hostkey, mpint f and signature
of H"
.
- References:
- "Host key did not match signature" error during rekey
- From: Chet Vora
- "Host key did not match signature" error during rekey
- Prev by Date: "Host key did not match signature" error during rekey
- Next by Date: Re: Incorrect protocol implementation by OpenSSH?
- Previous by thread: "Host key did not match signature" error during rekey
- Next by thread: Re: "Host key did not match signature" error during rekey
- Index(es):
Relevant Pages
|
