PuTTY bug kexinit-guess

Home | Licence | FAQ | Docs | Download | Keys | Links
Mirrors | Updates | Feedback | Changes | Wishlist | Team

summary: first_kex_packet_follows is ignored
class: bug: This is clearly an actual problem we want fixed.
difficulty: fun: Just needs tuits, and not many of them.
priority: medium: This should be fixed one day.
present-in: 2005-01-11
fixed-in: 2005-01-23 (0.58) (0.59) (0.60) (0.61) (0.62)

The current SECSH transport draft, draft-ietf-secsh-transport-22.txt,

specifies a boolean in the KEXINIT packet defined as:



      first_kex_packet_follows

         Indicates whether a guessed key exchange packet follows.  If a

         guessed packet will be sent, this MUST be TRUE.  If no guessed

         packet will be sent, this MUST be FALSE.



         After receiving the SSH_MSG_KEXINIT packet from the other side,

         each party will know whether their guess was right.  If the

         other party's guess was wrong, and this field was TRUE, the

         next packet MUST be silently ignored, and both sides MUST then

         act as determined by the negotiated key exchange method.  If

         the guess was right, key exchange MUST continue using the

         guessed packet.



From code inspection, I think PuTTY currently ignores this field, which means

that if it encounters a server that sets it to true and doesn't share PuTTY's

preferred key-exchange method, it'll get horribly confused.

Audit trail for this bug.

If you want to comment on this web site, see the Feedback page.
(last revision of this bug record was at 2005-01-22 13:34:08 +0000)