Google Git
Sign in
go / crypto / 0a4e4d451b03d07d8e92e07f8d9e1db84e6e89ac
commit0a4e4d451b03d07d8e92e07f8d9e1db84e6e89ac[log] [tgz]
authorHan-Wen Nienhuys <hanwen@google.com>Tue May 17 10:30:20 2016 -0400
committerHan-Wen Nienhuys <hanwen@google.com>Wed May 18 15:15:28 2016 +0000
tree1ba3e2c1bdf0b17c3818bce8303c1ba9f2be1f02
parentb6789ab629056511030d652d851e7dc10c9e9c9e [diff]
x/crypto/ssh: return msgNewKeys for a short-circuited first kex.

If one of both sides is slow, the first kex completes implicitly. The
first kex also produces msgNewKeys, and this must be read to ensure
that the authentication code is not confused by it.

Before this fix, the problem could be reproduced by inserting a sleep
just before the requestInitialKeyChange call.

Fixes #15198

Change-Id: I602db5dd37b2d8556c88ab4cdb693ccf90147a3d
Reviewed-on: https://go-review.googlesource.com/23137
Run-TryBot: Han-Wen Nienhuys <hanwen@google.com>
Reviewed-by: Adam Langley <agl@golang.org>
TryBot-Result: Gobot Gobot <gobot@golang.org>
1 file changed
tree: 1ba3e2c1bdf0b17c3818bce8303c1ba9f2be1f02
  1. acme/
  2. bcrypt/
  3. blowfish/
  4. bn256/
  5. cast5/
  6. curve25519/
  7. ed25519/
  8. hkdf/
  9. md4/
  10. nacl/
  11. ocsp/
  12. openpgp/
  13. otr/
  14. pbkdf2/
  15. pkcs12/
  16. poly1305/
  17. ripemd160/
  18. salsa20/
  19. scrypt/
  20. sha3/
  21. ssh/
  22. tea/
  23. twofish/
  24. xtea/
  25. xts/
  26. .gitattributes
  27. .gitignore
  28. AUTHORS
  29. codereview.cfg
  30. CONTRIBUTING.md
  31. CONTRIBUTORS
  32. LICENSE
  33. PATENTS
  34. README