ref: cfad970552d2f0810705b84589081120e8476a38
parent: 8d55e43af3a71b10ab08977f513b4195b8a9e7b7
author: cinap_lenrek <cinap_lenrek@felloff.net>
date: Sun May 26 22:11:16 EDT 2019
ssh: work around github.com's broken cipher negotiation code (thanks Ori_B) key exchange with git@github.com fails as they appear to try to negotiate a mac algorithm even tho we use an AEAD cipher which does not use a mac algorithm. the work around is to supply a dummy mac algorithm that they can negotiate to make them happy.
--- a/sys/src/cmd/ssh.c
+++ b/sys/src/cmd/ssh.c
@@ -489,7 +489,7 @@
static char kexalgs[] = "curve25519-sha256,curve25519-sha256@libssh.org";
static char cipheralgs[] = "chacha20-poly1305@openssh.com";
static char zipalgs[] = "none";
- static char macalgs[] = "";
+ static char macalgs[] = "hmac-sha1"; /* work around for github.com */
static char langs[] = "";
uchar cookie[16], x[32], yc[32], z[32], k[32+1], h[SHA2_256dlen], *ys, *ks, *sig;
--
⑨