ssh: ignore MAC if AEAD ciphers negotiated - go-x-crypto - Fork of golang.org/x/crypto with my patches.

diff options

author	Roland Shoemaker <roland@golang.org>	2022-03-02 08:24:15 -0800
committer	Filippo Valsorda <filippo@golang.org>	2022-03-12 13:11:42 +0000
commit	6068a2e6cfdc895ce524b6d2bdc8ea0cea8ea0e8 (patch)
tree	fed73256d9872634836f5ad94e8e3ff1a11cc52f /ssh/session.go
parent	efcb8507fb706dc09498bdd32b7aafa38228fc86 (diff)
download	go-x-crypto-6068a2e6cfdc895ce524b6d2bdc8ea0cea8ea0e8.tar.xz

ssh: ignore MAC if AEAD ciphers negotiated

If the server/client cipher chosen is one of the two AEAD ciphers that we support (aes128-gcm@openssh.com and chacha20-poly1305@openssh.com), don't attempt to find a common MAC algorithm in findAgreedAlgorithms. Similarly in newPacketCipher, don't attempt to generate a MAC key if we are using a AEAD cipher. Fixes golang/go#51406 Change-Id: Id48ae72f052cb0a0c597b32e9901a0f218e4161f Reviewed-on: https://go-review.googlesource.com/c/crypto/+/389214 Trust: Roland Shoemaker <roland@golang.org> Run-TryBot: Roland Shoemaker <roland@golang.org> TryBot-Result: Gopher Robot <gobot@golang.org> Reviewed-by: Filippo Valsorda <filippo@golang.org>

Diffstat (limited to 'ssh/session.go')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: