You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@mina.apache.org by "usha ladkani (JIRA)" <ji...@apache.org> on 2014/03/12 16:21:43 UTC

[jira] [Commented] (SSHD-273) Add RFC 6668 (HMAC SHA-2) support

    [ https://issues.apache.org/jira/browse/SSHD-273?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13931863#comment-13931863 ] 

usha ladkani commented on SSHD-273:
-----------------------------------

I am unable to connect to server using this patch and getting below error.

I am facing some issue while connecting to server using   hmac-sha2-256  algo.

It works fine for me using HMACMD5 and HMACSHA1 .

I am using apache sshd-core source which is modified as part of RFC 6668 (HMAC SHA-2) support.

But when I try to connect a client to this server , I am getting below error Can u please help me and see below logs and let me know what cud be wrong.


INFO: Connecting to 9.126.142.193 port 2222
INFO: Connection established
INFO: Remote version string: SSH-2.0-${POM.ARTIFACTID}-${POM.VERSION}
INFO: Local version string: SSH-2.0-JSCH-0.1.49
INFO: CheckCiphers: aes256-ctr,aes192-ctr,aes128-ctr,aes256-cbc,aes192-cbc,aes128-cbc,3des-ctr,arcfour,arcfour128,arcfour256
INFO: aes256-ctr is not available.
INFO: aes192-ctr is not available.
INFO: aes256-cbc is not available.
INFO: aes192-cbc is not available.
INFO: arcfour256 is not available.
INFO: CheckKexes: diffie-hellman-group14-sha1
INFO: SSH_MSG_KEXINIT sent
INFO: SSH_MSG_KEXINIT received
INFO: kex: server: diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
INFO: kex: server: ssh-rsa
INFO: kex: server: aes128-cbc,3des-cbc
INFO: kex: server: aes128-cbc,3des-cbc
INFO: kex: server: hmac-md5,hmac-sha1,hmac-md5-96,hmac-sha1-96,hmac-sha2-256,hmac-sha2-512
INFO: kex: server: hmac-md5,hmac-sha1,hmac-md5-96,hmac-sha1-96,hmac-sha2-256,hmac-sha2-512
INFO: kex: server: none
INFO: kex: server: none
INFO: kex: server:
INFO: kex: server:
INFO: kex: client: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1
INFO: kex: client: ssh-rsa,ssh-dss
INFO: kex: client: 3des-cbc,aes128-cbc
INFO: kex: client: aes128-ctr,aes128-cbc,3des-ctr,3des-cbc,blowfish-cbc
INFO: kex: client: hmac-sha2-256
INFO: kex: client: hmac-sha2-256
INFO: kex: client: none
INFO: kex: client: none
INFO: kex: client:
INFO: kex: client:
INFO: kex: server->client aes128-cbc hmac-sha2-256 none
INFO: kex: client->server 3des-cbc hmac-sha2-256 none
INFO: SSH_MSG_KEXDH_INIT sent
INFO: expecting SSH_MSG_KEXDH_REPLY
INFO: ssh_rsa_verify: signature true
WARN: Permanently added '9.126.142.193' (RSA) to the list of known hosts.
INFO: SSH_MSG_NEWKEYS sent
INFO: SSH_MSG_NEWKEYS received
INFO: SSH_MSG_SERVICE_REQUEST sent
INFO: Disconnecting from 9.126.142.193 port 2222
com.jcraft.jsch.JSchException: Session.connect: java.io.IOException: End of IO Stream Read
at com.jcraft.jsch.Session.connect(Session.java:534)
at com.jcraft.jsch.Session.connect(Session.java:162)
at com.ibm.bcg.sftpclient.impl.JSCHMain.main(JSCHMain.java:44)
com.jcraft.jsch.JSchException: Session.connect: java.io.IOException: End of IO Stream Read

Thanks a lot




> Add RFC 6668 (HMAC SHA-2) support
> ---------------------------------
>
>                 Key: SSHD-273
>                 URL: https://issues.apache.org/jira/browse/SSHD-273
>             Project: MINA SSHD
>          Issue Type: New Feature
>    Affects Versions: 0.10.0
>            Reporter: Kenny Root
>            Assignee: Guillaume Nodet
>             Fix For: 0.10.0
>
>         Attachments: 0001-SSHD-273-Add-RFC-6668-HMAC-SHA-2-support.patch
>
>
> Adds support for HMAC with SHA-2 hashes (SHA-256 and SHA-512) as specified in RFC 6668. Both HmacSHA256 and HmacSHA512 are added as they are supported by Sun/Oracle JDK, OpenJDK, and BouncyCastle.



--
This message was sent by Atlassian JIRA
(v6.2#6252)