PuTTY wish rfc4419

This is a mirror. Follow this link to find the primary PuTTY web site.

Home | FAQ | Feedback | Licence | Updates | Mirrors | Keys | Links | Team
Download: Stable · Snapshot | Docs | Changes | Wishlist

summary: Support the RFC 4419 revision to Diffie-Hellman group exchange
class: wish: This is a request for an enhancement.
difficulty: fun: Just needs tuits, and not many of them.
priority: high: This should be fixed in the next release.
fixed-in: 2015-04-25 62a1bce7cb3ecb98feb57c7f1fd5d55845ce1533 0.65

The variant of Diffie-Hellman key exchange in which the server sends a different prime modulus every time (known in SSH as 'group exchange') was revised by RFC 4419 to change the format of the SSH_MSG_KEX_DH_GEX_REQUEST message, and also its message number. PuTTY didn't get round to supporting the revised message for quite a long time, but as of 0.65 it will now do so.

(The OpenSSH server is removing support for these messages. It has backwards-compatibility code for old versions of PuTTY, but assumes that 0.65 onwards will support the revised message. If for some reason the backwards-compatibility arrangements don't work, the symptom is a message like error: Hm, kex protocol error: type 30 seq 1 [preauth] in the SSH server log.)

If you want to comment on this web site, see the Feedback page.
Audit trail for this wish.
(last revision of this bug record was at 2016-03-25 11:32:19 +0000)