Page MenuHomePhabricator

The server should not send the SSH_MSG_EXT_INFO message after rekeying
Closed, ResolvedPublic

Description

The RFC 8308 specifies, that the SSH_MSG_EXT_INFO message should be sent after the *first* SSH_MSG_NEWKEYS message, while the current implementation sends it also after the rekey:

o  As the next packet following the server's first SSH_MSG_NEWKEYS.

The same bug is in OpenSSH:

https://bugzilla.mindrot.org/show_bug.cgi?id=2929

This is not a high-priority since the clients are pretty tolerant, but it would be good to follow the recommendation.

Event Timeline

Jakuje created this task.Nov 13 2018, 3:39 PM
Jakuje closed this task as Resolved.Feb 7 2019, 3:07 PM
Jakuje claimed this task.

This was fixed by the previously mentioned commits that made their way into master and 0.8 branch.