lukegb opened a new issue, #525:
URL: https://github.com/apache/mina-sshd/issues/525
### Version
2.13.1
### Bug description
Using Mina SSHd inside Gerrit, if sntrup761x25519-sha...@openssh.com is
enabled, then OpenSSH cannot connect with an "incorrect signature" error.
### Actual behavior
```
$ ssh -p 29418 admin@localhost -o ControlMaster=no
ssh_dispatch_run_fatal: Connection to ::1 port 29418: incorrect signature
$ ssh -p 29418 admin@localhost -o ControlMaster=no -o
KexAlgorithms=sntrup761x25519-sha...@openssh.com
ssh_dispatch_run_fatal: Connection to ::1 port 29418: incorrect signature
$ ssh -p 29418 admin@localhost -o ControlMaster=no -o
KexAlgorithms=curve25519-sha256
**** Welcome to Gerrit Code Review ****
Hi Administrator, you have successfully connected over SSH.
Unfortunately, interactive shells are disabled.
To clone a hosted Git repository, use:
git clone ssh://admin@localhost:29418/REPOSITORY_NAME.git
Connection to localhost closed.
```
### Expected behavior
Both connections using sntrup761x25519-sha...@openssh.com and not using
sntrup761x25519-sha...@openssh.com should work.
### Relevant log output
_No response_
### Other information
```
$ ssh -V
OpenSSH_9.8p1, OpenSSL 3.0.13 30 Jan 2024
```
I'm not 100% sure if BouncyCastle is available on the classpath; I'll add
some more debugging information once it's available.
This KEX method is new and was added in #498 by @tomaswolf
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: dev-unsubscr...@mina.apache.org.apache.org
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@mina.apache.org
For additional commands, e-mail: dev-h...@mina.apache.org
