You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@mina.apache.org by "usha ladkani (JIRA)" <ji...@apache.org> on 2014/03/12 16:21:43 UTC
[jira] [Commented] (SSHD-273) Add RFC 6668 (HMAC SHA-2) support
[ https://issues.apache.org/jira/browse/SSHD-273?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13931863#comment-13931863 ]
usha ladkani commented on SSHD-273:
-----------------------------------
I am unable to connect to server using this patch and getting below error.
I am facing some issue while connecting to server using hmac-sha2-256 algo.
It works fine for me using HMACMD5 and HMACSHA1 .
I am using apache sshd-core source which is modified as part of RFC 6668 (HMAC SHA-2) support.
But when I try to connect a client to this server , I am getting below error Can u please help me and see below logs and let me know what cud be wrong.
INFO: Connecting to 9.126.142.193 port 2222
INFO: Connection established
INFO: Remote version string: SSH-2.0-${POM.ARTIFACTID}-${POM.VERSION}
INFO: Local version string: SSH-2.0-JSCH-0.1.49
INFO: CheckCiphers: aes256-ctr,aes192-ctr,aes128-ctr,aes256-cbc,aes192-cbc,aes128-cbc,3des-ctr,arcfour,arcfour128,arcfour256
INFO: aes256-ctr is not available.
INFO: aes192-ctr is not available.
INFO: aes256-cbc is not available.
INFO: aes192-cbc is not available.
INFO: arcfour256 is not available.
INFO: CheckKexes: diffie-hellman-group14-sha1
INFO: SSH_MSG_KEXINIT sent
INFO: SSH_MSG_KEXINIT received
INFO: kex: server: diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
INFO: kex: server: ssh-rsa
INFO: kex: server: aes128-cbc,3des-cbc
INFO: kex: server: aes128-cbc,3des-cbc
INFO: kex: server: hmac-md5,hmac-sha1,hmac-md5-96,hmac-sha1-96,hmac-sha2-256,hmac-sha2-512
INFO: kex: server: hmac-md5,hmac-sha1,hmac-md5-96,hmac-sha1-96,hmac-sha2-256,hmac-sha2-512
INFO: kex: server: none
INFO: kex: server: none
INFO: kex: server:
INFO: kex: server:
INFO: kex: client: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1
INFO: kex: client: ssh-rsa,ssh-dss
INFO: kex: client: 3des-cbc,aes128-cbc
INFO: kex: client: aes128-ctr,aes128-cbc,3des-ctr,3des-cbc,blowfish-cbc
INFO: kex: client: hmac-sha2-256
INFO: kex: client: hmac-sha2-256
INFO: kex: client: none
INFO: kex: client: none
INFO: kex: client:
INFO: kex: client:
INFO: kex: server->client aes128-cbc hmac-sha2-256 none
INFO: kex: client->server 3des-cbc hmac-sha2-256 none
INFO: SSH_MSG_KEXDH_INIT sent
INFO: expecting SSH_MSG_KEXDH_REPLY
INFO: ssh_rsa_verify: signature true
WARN: Permanently added '9.126.142.193' (RSA) to the list of known hosts.
INFO: SSH_MSG_NEWKEYS sent
INFO: SSH_MSG_NEWKEYS received
INFO: SSH_MSG_SERVICE_REQUEST sent
INFO: Disconnecting from 9.126.142.193 port 2222
com.jcraft.jsch.JSchException: Session.connect: java.io.IOException: End of IO Stream Read
at com.jcraft.jsch.Session.connect(Session.java:534)
at com.jcraft.jsch.Session.connect(Session.java:162)
at com.ibm.bcg.sftpclient.impl.JSCHMain.main(JSCHMain.java:44)
com.jcraft.jsch.JSchException: Session.connect: java.io.IOException: End of IO Stream Read
Thanks a lot
> Add RFC 6668 (HMAC SHA-2) support
> ---------------------------------
>
> Key: SSHD-273
> URL: https://issues.apache.org/jira/browse/SSHD-273
> Project: MINA SSHD
> Issue Type: New Feature
> Affects Versions: 0.10.0
> Reporter: Kenny Root
> Assignee: Guillaume Nodet
> Fix For: 0.10.0
>
> Attachments: 0001-SSHD-273-Add-RFC-6668-HMAC-SHA-2-support.patch
>
>
> Adds support for HMAC with SHA-2 hashes (SHA-256 and SHA-512) as specified in RFC 6668. Both HmacSHA256 and HmacSHA512 are added as they are supported by Sun/Oracle JDK, OpenJDK, and BouncyCastle.
--
This message was sent by Atlassian JIRA
(v6.2#6252)