> We see that diffie-hellman-group14-sha256 support has recently been
> added to libssh2 but that it is not yet in any release. Does anyone
> know when an official release containing this key exchange algorithm
> will be available?
We don’t have a release scheduled, but hopefully soonish.
> Some other connections fail because LIBSSH2_DH_GEX_MAXGROUP is too
> small. These customers' machines reject values lower than 4096 by
> default but libssh2 only offers the range from 1024 to 2048. Do you
> have any plans to raise the MAXGROUP value? Openssh has a min/max range
> of 2048/8192 so perhaps that could be adopted in libssh2.
Thanks for bringing this to our attention, I’ve submitted a PR to update these values based on RFC 8270 which matches OpenSSH.
Cheers,
Will
_______________________________________________
libssh2-devel https://cool.haxx.se/cgi-bin/mailman/listinfo/libssh2-devel
Received on 2020-07-01