Diffusion FreeBSD src repository 92f58c69a14c

Implement "strict key exchange" in ssh and sshd.
92f58c69a14c
Actions

Description

Implement "strict key exchange" in ssh and sshd.

This adds a protocol extension to improve the integrity of the SSH
transport protocol, particular in and around the initial key exchange
(KEX) phase.

Full details of the extension are in the PROTOCOL file.

OpenBSD-Commit-ID: 2a66ac962f0a630d7945fee54004ed9e9c439f14

Approved by: so (implicit)
Obtained from: https://anongit.mindrot.org/openssh.git/patch/?id=1edb00c58f8a6875fad6a497aa2bacf37f9e6cd5
Security: CVE-2023-48795

Details

Provenance

gordon

Authored on Dec 18 2023, 4:22 PM

Parents

rG18e2c4175f78: Remove _POSIX_PRIORITIZED_IO references from man pages

Branches

Unknown

Tags

Unknown

Event Timeline

gordon committed rG92f58c69a14c: Implement "strict key exchange" in ssh and sshd. (authored by gordon).Dec 18 2023, 4:22 PM

gordon mentioned this in rG673d1ead65c9: Implement "strict key exchange" in ssh and sshd..Dec 18 2023, 4:54 PM

gordon mentioned this in rG3bafcb9744c9: Implement "strict key exchange" in ssh and sshd..Dec 18 2023, 5:10 PM

gordon mentioned this in rGb9856d61e99d: Implement "strict key exchange" in ssh and sshd..Dec 19 2023, 8:20 PM

gordon mentioned this in rG69bd68ba30c0: Implement "strict key exchange" in ssh and sshd..

Changes (6)

Path

Size

crypto/

openssh/

rG92f58c69a14c

View Options

crypto/openssh/PROTOCOL

View Options

crypto/openssh/kex.c

View Options

crypto/openssh/kex.h

View Options

crypto/openssh/packet.c

View Options

crypto/openssh/packet.h

View Options

crypto/openssh/sshconnect2.c

Implement "strict key exchange" in ssh and sshd.92f58c69a14cActions

Description

Details

Event Timeline

Changes (6)

rG92f58c69a14c

crypto/openssh/PROTOCOL

crypto/openssh/kex.c

crypto/openssh/kex.h

crypto/openssh/packet.c

crypto/openssh/packet.h

crypto/openssh/sshconnect2.c

Implement "strict key exchange" in ssh and sshd.
92f58c69a14c
Actions