Skip to content

michal/ssh/fix-each-side-may-guess/OTP-19864 #10575

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
Mikaka27 wants to merge 2 commits into
base: maint
Choose a base branch
from
Open

michal/ssh/fix-each-side-may-guess/OTP-19864 #10575

Mikaka27 wants to merge 2 commits into from
+352 −49

Conversation

@Mikaka27
Copy link
Contributor

@Mikaka27 Mikaka27 commented Jan 21, 2026

Fixes: #8676

If merged after #10512 we need to add support for hybrid key exchange here as well.
If merged before, we need to add support for this in #10512

@Mikaka27 Mikaka27 self-assigned this Jan 21, 2026
@Mikaka27 Mikaka27 added the team:PS Assigned to OTP team PS label Jan 21, 2026
@github-actions
Copy link
Contributor

github-actions bot commented Jan 21, 2026
edited
Loading

CT Test Results

    2 files     29 suites   20m 7s ⏱️
  485 tests   479 ✅  6 💤 0 ❌
1 694 runs  1 668 ✅ 26 💤 0 ❌

Results for commit 916a93b.

♻️ This comment has been updated with latest results.

To speed up review, make sure that you have read Contributing to Erlang/OTP and that all checks pass.

See the TESTING and DEVELOPMENT HowTo guides for details about how to run test locally.

Artifacts

// Erlang/OTP Github Action Bot

@Mikaka27 Mikaka27 force-pushed the michal/ssh/fix-each-side-may-guess/OTP-19864 branch 2 times, most recently from 64ac615 to 7a43077 Compare January 21, 2026 16:24
@Mikaka27 Mikaka27 added the testing currently being tested, tag is used by OTP internal CI label Jan 21, 2026
@Mikaka27 Mikaka27 mentioned this pull request Jan 21, 2026
Draft
@Mikaka27 Mikaka27 requested a review from u3s January 22, 2026 09:13
@Mikaka27
Copy link
Contributor Author

Mikaka27 commented Jan 22, 2026

This caused failure in the tests, will have to do better filtering of algorithm selected, to ensure that we try only with algorithms supported by available openssh version. Will fix that.

@Mikaka27 Mikaka27 force-pushed the michal/ssh/fix-each-side-may-guess/OTP-19864 branch from 7a43077 to 243cfb9 Compare January 23, 2026 11:21
@Mikaka27 Mikaka27 force-pushed the michal/ssh/fix-each-side-may-guess/OTP-19864 branch from 243cfb9 to 916a93b Compare January 23, 2026 11:25
u3s
u3s requested changes Jan 26, 2026
View reviewed changes
lib/ssh/src/ssh.hrl

kex_strict_negotiated = false,

ignore_initial_kex_message = false, %% RFC 4253 section 7, if true peer's guess was wrong
Copy link
Contributor

@u3s u3s Jan 26, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

don't use tab character pls.

lib/ssh/src/ssh_fsm_kexinit.erl
D = #data{ssh_params = Ssh0 = #ssh{ignore_initial_kex_message = true}}) when
is_record(Msg, ssh_msg_kexdh_init);
is_record(Msg, ssh_msg_kex_ecdh_init) ->
DebugMsg = ["server ignored ", element(1, Msg), " message due to wrong guess."],
Copy link
Contributor

@u3s u3s Jan 26, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

use ?SELECT_MSG + fun() macro to avoid processing of debug lines if level is not debug.

lib/ssh/src/ssh_transport.erl
server_host_key_algorithms = [CounterHKey | _]},
#ssh_msg_kexinit{kex_algorithms = [OwnKex | _],
server_host_key_algorithms = [OwnHKey | _]}) ->
{CounterKex, CounterHKey} /= {OwnKex, OwnHKey}.
Copy link
Contributor

@u3s u3s Jan 26, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

maybe less processing and more erlangish if you match in function head for equalness? like:

fun(false, _, _) -> false;
fun(true, A, A) -> false;
fun(true, _, _ -> true.

lib/ssh/test/ssh_protocol_SUITE.erl
WrongKex = {kex, lists:reverse(KexAlgs)},
WrongPubKey = {public_key, lists:reverse(PubKeyAlgs)},

ClientAlgsWrongKex = [WrongKex, PubKey],
Copy link
Contributor

@u3s u3s Jan 26, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

use list comprehension and reduce empty lines pls. avoid copy/paste pls.

lib/ssh/test/ssh_protocol_SUITE.erl
WrongKex = {kex, lists:reverse(KexAlgs)},
WrongPubKey = {public_key, lists:reverse(PubKeyAlgs)},

ClientAlgsWrongKex = [WrongKex, PubKey],
Copy link
Contributor

@u3s u3s Jan 26, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

as above. please reduce copy/paste and empty lines.

lib/ssh/test/ssh_protocol_SUITE.erl
client_guess_test(false, Config, ClientAlgsWrong, ServerAlgs).

%%% RFC 4253 section 7, client guesses correctly in renegotiation
client_guesses_correctly_renegotiation(Config) ->
Copy link
Contributor

@u3s u3s Jan 26, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

are we repeating the same test cases here again?
can you reduce 4 testcases to 2? just combine 2 helper calls in list comprehension.

AFAIK, you have same inut data.
Just make sure to sprinkle some test logs in helper functions so it is clear in logs where the failure happened.
(?CT_LOG is not present in maint-27, maint-26 but maybe its a good occasion to port it there?)

lib/ssh/test/ssh_protocol_SUITE.erl
get_specific_ops(GuessCorrect, Variant);

%%% RFC 4253 section 7, each side may guess
get_specific_ops(true, dh) ->
Copy link
Contributor

@u3s u3s Jan 26, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

please try to further reduce this helper code, possibly avoiding repetitions.

maybe something like this or better?

get_specific_ops(GuessCorrect, Variant) ->
    {InitGuess, Init, Reply} = kex_messages(Variant),
    [{send, ssh_msg_kexinit_guess},
     {match, #ssh_msg_kexinit{_='_'}, receive_msg},
     {send, InitGuess}] ++
    [{send, Init} || GuessCorrect =:= false] ++
    [{match, Reply, receive_msg}].

kex_messages(dh) ->
    {ssh_msg_kexdh_init_guess, ssh_msg_kexdh_init, #ssh_msg_kexdh_reply{_='_'}};
kex_messages(ecdh) ->
    {ssh_msg_kex_ecdh_init_guess, ssh_msg_kex_ecdh_init, #ssh_msg_kex_ecdh_reply{_='_'}}.

lib/ssh/test/ssh_trpt_test_lib.erl
{"Send (reconstructed)~n~s~n",[format_msg(Msg)]}
end),
send_bytes(NextKexMsgBin, S#s{ssh = C});
send(S0, MsgType) when ?role(S0) == client,
Copy link
Contributor

@u3s u3s Jan 26, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

please try to reduce send code you have added to avoid repetitions of same code fragments. remember you will be maintaining this ;-) !
I forgot that when adding clause for send(S0, ssh_msg_kexdh_init_dup) ... now I regret it... maybe it could also be reduced in one go?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@u3s u3s u3s requested changes

Requested changes must be addressed to merge this pull request.

Assignees

@Mikaka27 Mikaka27

Labels

team:PS Assigned to OTP team PS testing currently being tested, tag is used by OTP internal CI

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Mikaka27 @u3s