[ https://issues.apache.org/jira/browse/SSHD-771?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16162527#comment-16162527 ]
Goldstein Lyor commented on SSHD-771: ------------------------------------- Off-by-one value introduced in commit [e0041fc60281b11037384abb79c3a94ef8bf8c5e|https://github.com/apache/mina-sshd/commit/e0041fc60281b11037384abb79c3a94ef8bf8c5e] > SFTP server closes the connection when hmac-sha2-512 is used > ------------------------------------------------------------ > > Key: SSHD-771 > URL: https://issues.apache.org/jira/browse/SSHD-771 > Project: MINA SSHD > Issue Type: Bug > Affects Versions: 1.6.0 > Reporter: Andreas Bergander > Assignee: Goldstein Lyor > Attachments: SshdTest.java > > > It seems like the SFTP server in sshd does not handle HMAC SHA-2-512 very > well. If I set up a server which only accepts that HMAC, the server closes > the connection as soon as I connect with a client. > The server throws an exception in AbstractSession (row 1380) before closing > the connection: > {code} > // Check the computed result with the received mac (just after the packet > data) > if (!BufferUtils.equals(inMacResult, 0, data, decoderLength + 4, macSize)) { > throw new SshException(SshConstants.SSH2_DISCONNECT_MAC_ERROR, "MAC Error"); > } > {code} > If I switch the HMAC to SHA-2-256 everything works ok. > I've attached a sample program which sets up a server. I've tested with a > couple of different clients and all of them exposes the error in the server. -- This message was sent by Atlassian JIRA (v6.4.14#64029)