You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Followup from #1384 - a bunch of time was wasted troubleshooting what should have been an obvious documented fact: that kex 'engines' must exhibit a hash_algo attribute or post-kex messages will implicitly get hashed with SHA1 (inside Packetizer).
This can cause SHA256-hash-based algorithm families to yield Bad packet length errors from an sshd (and in Paramiko's end, usually auth errors [until #387?] because of its awful exception trapping) if that attribute is not actually used when implementing the kex class.
It'd be nice to make a basic KexEngine that documents this and other assumptions made by either Transport or Packetizer, and then move the extant kex classes to subclass it.
Further, we should IMHO change the behavior of the current fallback to except instead - I don't think we accept arbitrary user objects here, which means we should be able to ensure all of our kex classes have an explicit hash_algo set, with the old ones using SHA1, and this will be backwards compatible for most users not doing deep hacks.
Finally, it'd be nice for us to catch this in the test suite too, but right now the kex tests (if not most others) use a very stripped down dummy Transport class, so most of Transport and all of Packetizer get totally skipped, which would otherwise have surfaced this problem. I suspect that's orthogonal but it may be worth poking at when doing this.
The text was updated successfully, but these errors were encountered:
Followup from #1384 - a bunch of time was wasted troubleshooting what should have been an obvious documented fact: that kex 'engines' must exhibit a
hash_algoattribute or post-kex messages will implicitly get hashed with SHA1 (inside Packetizer).This can cause SHA256-hash-based algorithm families to yield
Bad packet lengtherrors from an sshd (and in Paramiko's end, usually auth errors [until #387?] because of its awful exception trapping) if that attribute is not actually used when implementing the kex class.It'd be nice to make a basic
KexEnginethat documents this and other assumptions made by either Transport or Packetizer, and then move the extant kex classes to subclass it.Further, we should IMHO change the behavior of the current fallback to except instead - I don't think we accept arbitrary user objects here, which means we should be able to ensure all of our kex classes have an explicit
hash_algoset, with the old ones using SHA1, and this will be backwards compatible for most users not doing deep hacks.Finally, it'd be nice for us to catch this in the test suite too, but right now the kex tests (if not most others) use a very stripped down dummy Transport class, so most of Transport and all of Packetizer get totally skipped, which would otherwise have surfaced this problem. I suspect that's orthogonal but it may be worth poking at when doing this.
The text was updated successfully, but these errors were encountered: