djm@openbsd.org 72b05ecd14 upstream: make the transport protocol stricter by disconnecting if ...

the peer sends non-KEX messages during a key re-exchange.

Previously an evil peer could continue sending non-KEX messages
without penalty, causing memory to be wasted up until the
connection terminated or the server/client hit a OOM limit.

reported by Marko Jevtic; ok markus@

OpenBSD-Commit-ID: 8937f0f2096156f5c68ae2dce77956373589d757

2026-05-31 15:03:56 +10:00

9.8 KiB

Raw Permalink Blame History

View Raw