Menu

#10 ecdsa 384 and 521 key verification broken

Unstable (example)
open
nobody
None
5
2022-02-04
2017-04-13
Iger
No

Hello!

Due to a hardcoded string in com.jcraft.jsch.jce.SignatureECDSA Jsch is unable to connect to any SSH server, providing ecdsa-sha2-nistp384 or ecdsa-sha2-nistp521 keys.

Attached is a proposed patch.

Cheers,
Ilya German

1 Attachments
jsch-ecdsa-384+fix.patch

Related

Patches: #10

Discussion

  • Vineeth Chinmay Karra

    Vineeth Chinmay Karra - 2019-03-14

    Hello.
    Do you have any similar patch for ecdsa-sha2-nistp256 host key algorithm?

     

    • Iger

      Iger - 2019-03-14

      Hey!

      It's been some time, but if I remember correctly, nistp-256 was working out
      of the box (that was the actually hardcoded part).

      On Thu, Mar 14, 2019 at 11:36 AM Vineeth Chinmay Karra redviper@users.sourceforge.net wrote:

      Hello.
      Do you have any similar patch for ecdsa-sha2-nistp256 host key algorithm?

      Status: open
      Group: Unstable (example)
      Created: Thu Apr 13, 2017 01:59 PM UTC by Iger
      Last Updated: Thu Apr 13, 2017 01:59 PM UTC
      Owner: nobody
      Attachments:

      Hello!

      Due to a hardcoded string in com.jcraft.jsch.jce.SignatureECDSA Jsch is
      unable to connect to any SSH server, providing ecdsa-sha2-nistp384 or
      ecdsa-sha2-nistp521 keys.

      Attached is a proposed patch.

      Cheers,
      Ilya German

      Sent from sourceforge.net because you indicated interest in
      https://sourceforge.net/p/jsch/patches/10/

      To unsubscribe from further messages, please visit
      https://sourceforge.net/auth/subscriptions/

       

      Related

      Patches: #10

      alternate

  • Bernhard Falk

    Bernhard Falk - 2022-02-04

    Hello !
    Can you give me a hint how to applicate the patch using the "patch" comand in linux terminal ? Or is there an other way to get a patched JSCH ?
    Thanks in advance
    Bernhard

     

Log in to post a comment.