ciscodump - older SSH key exchange algorithms not supported
Summary
Connecting to a cisco switch running ios 15.2(7)E9, Wireshark 4.2.2 for winx64, ciscodump as follows:
ciscodump.exe version 1.0.0 Compiled with libssh version 0.10.5 Running with libssh version 0.10.5/gnutls/zlib
The following kex types diffie-hellman-group-exchange-sha1 and diffie-hellman-group14-sha1 are excluded from the client side of the connection negotiation.
Connection is met with the following error:
ssh_open_remote_connection(): Error creating connection: Connection error: kex error : no match for method kex algos: server [diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1], client [curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group18-sha512,diffie-hellman-group16-sha512,diffie-hellman-group-exchange-sha256,diffie-hellman-group14-sha256]
Sample capture file
ssh_open_remote_connection(): Error creating connection: Connection error: kex error : no match for method kex algos: server [diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1], client [curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group18-sha512,diffie-hellman-group16-sha512,diffie-hellman-group-exchange-sha256,diffie-hellman-group14-sha256]
Steps to reproduce
Configure Wireshark for ciscodump capture to Cisco device running ios15.2(7)E9 (or any variant not supporting new algorithms)
What is the current bug behavior?
Connection error
What is the expected correct behavior?
Connection successful
Build information
(In Wireshark, select Help->About Wireshark from the main menu and use the button "Copy To Clipboard".
Please paste the complete output here. Or from the command line, run `tshark -v` or `wireshark -v`)Version 4.2.2 (v4.2.2-0-g40459284).
Compiled (64-bit) using Microsoft Visual Studio 2022 (VC++ 14.37, build 32822), with GLib 2.78.0, with Qt 6.5.3, with libpcap, with zlib 1.3.0, with PCRE2, with Lua 5.2.4 (with UfW patches), with GnuTLS 3.8.2 and PKCS #11 (closed) support, with Gcrypt 1.10.2-unknown, with Kerberos (MIT), with MaxMind, with nghttp2 1.57.0, with nghttp3 1.0.0, with brotli, with LZ4, with Zstandard, with Snappy, with libxml2 2.11.5, with libsmi 0.5.0, with QtMultimedia, with automatic updates using WinSparkle 0.8.0, with AirPcap, with Minizip, with binary plugins.
Running on 64-bit Windows 10 (22H2), build 19045, with Intel(R) Core(TM) i7-7700HQ CPU @ 2.80GHz (with SSE4.2), with 24495 MB of physical memory, with GLib 2.78.0, with Qt 6.5.3, with Npcap version 1.78, based on libpcap version 1.10.4, with PCRE2 10.42 2022-12-11, with c-ares 1.19.0, with GnuTLS 3.8.2, with Gcrypt 1.10.2-unknown, with nghttp2 1.57.0, with nghttp3 1.0.0, with brotli 1.0.9, with LZ4 1.9.3, with Zstandard 1.5.2, without AirPcap, with dark display mode, without HiDPI, with QPA plugin "windows", with LC_TYPE=English_Australia.utf8, binary plugins supported.
Plugins:
ciscodump.exe 1.0.0 extcap C:\Program Files\Wireshark\extcap\ciscodump.exe ethercat.dll 0.1.0 dissector C:\Program Files\Wireshark\plugins\4.2\epan\ethercat.dll etwdump.exe 1.0.0 extcap C:\Program Files\Wireshark\extcap\etwdump.exe g711.dll 0.1.0 codec C:\Program Files\Wireshark\plugins\4.2\codecs\g711.dll g722.dll 0.1.0 codec C:\Program Files\Wireshark\plugins\4.2\codecs\g722.dll g726.dll 0.1.0 codec C:\Program Files\Wireshark\plugins\4.2\codecs\g726.dll g729.dll 0.1.0 codec C:\Program Files\Wireshark\plugins\4.2\codecs\g729.dll gryphon.dll 0.0.4 dissector C:\Program Files\Wireshark\plugins\4.2\epan\gryphon.dll ilbc.dll 0.1.0 codec C:\Program Files\Wireshark\plugins\4.2\codecs\ilbc.dll irda.dll 0.0.6 dissector C:\Program Files\Wireshark\plugins\4.2\epan\irda.dll l16mono.dll 0.1.0 codec C:\Program Files\Wireshark\plugins\4.2\codecs\l16mono.dll mate.dll 1.0.1 dissector C:\Program Files\Wireshark\plugins\4.2\epan\mate.dll opcua.dll 1.0.0 dissector C:\Program Files\Wireshark\plugins\4.2\epan\opcua.dll opus_dec.dll 0.1.0 codec C:\Program Files\Wireshark\plugins\4.2\codecs\opus_dec.dll profinet.dll 0.2.4 dissector C:\Program Files\Wireshark\plugins\4.2\epan\profinet.dll sbc.dll 0.1.0 codec C:\Program Files\Wireshark\plugins\4.2\codecs\sbc.dll sshdump.exe 1.2.0 extcap C:\Program Files\Wireshark\extcap\sshdump.exe stats_tree.dll 0.0.1 dissector C:\Program Files\Wireshark\plugins\4.2\epan\stats_tree.dll transum.dll 2.0.4 dissector C:\Program Files\Wireshark\plugins\4.2\epan\transum.dll udpdump.exe 0.1.0 extcap C:\Program Files\Wireshark\extcap\udpdump.exe unistim.dll 0.0.2 dissector C:\Program Files\Wireshark\plugins\4.2\epan\unistim.dll usbdump.dll 0.0.1 file type C:\Program Files\Wireshark\plugins\4.2\wiretap\usbdump.dll wifidump.exe 1.0.0 extcap C:\Program Files\Wireshark\extcap\wifidump.exe wimax.dll 1.2.0 dissector C:\Program Files\Wireshark\plugins\4.2\epan\wimax.dll wimaxasncp.dll 0.0.1 dissector C:\Program Files\Wireshark\plugins\4.2\epan\wimaxasncp.dll wimaxmacphy.dll 0.0.1 dissector C:\Program Files\Wireshark\plugins\4.2\epan\wimaxmacphy.dll