diff options
| author | djm@openbsd.org <djm@openbsd.org> | 2018-10-09 07:42:23 +0200 |
|---|---|---|
| committer | Damien Miller <djm@mindrot.org> | 2018-10-09 07:45:45 +0200 |
| commit | edbb6febccee084d212fdc0cb05b40cb1c646ab1 (patch) | |
| tree | e98550d002bc10f90c0b9256e18af5107d64bf4a /sshkey.c | |
| parent | upstream: Support using service names for port numbers. (diff) | |
| download | openssh-edbb6febccee084d212fdc0cb05b40cb1c646ab1.tar.xz openssh-edbb6febccee084d212fdc0cb05b40cb1c646ab1.zip | |
upstream: Treat all PEM_read_bio_PrivateKey() errors when a passphrase
is specified as "incorrect passphrase" instead of trying to choose between
that and "invalid format".
libcrypto can return ASN1 parsing errors rather than the expected
decrypt error in certain infrequent cases when trying to decrypt/parse
PEM private keys when supplied with an invalid passphrase.
Report and repro recipe from Thomas Deutschmann in bz#2901
ok markus@
OpenBSD-Commit-ID: b1d4cd92395f9743f81c0d23aab2524109580870
Diffstat (limited to 'sshkey.c')
| -rw-r--r-- | sshkey.c | 13 |
1 files changed, 11 insertions, 2 deletions
@@ -1,4 +1,4 @@ -/* $OpenBSD: sshkey.c,v 1.70 2018/09/14 04:17:44 djm Exp $ */ +/* $OpenBSD: sshkey.c,v 1.71 2018/10/09 05:42:23 djm Exp $ */ /* * Copyright (c) 2000, 2001 Markus Friedl. All rights reserved. * Copyright (c) 2008 Alexander von Gernler. All rights reserved. @@ -3936,7 +3936,16 @@ sshkey_parse_private_pem_fileblob(struct sshbuf *blob, int type, clear_libcrypto_errors(); if ((pk = PEM_read_bio_PrivateKey(bio, NULL, NULL, (char *)passphrase)) == NULL) { - r = convert_libcrypto_error(); + /* + * libcrypto may return various ASN.1 errors when attempting + * to parse a key with an incorrect passphrase. + * Treat all format errors as "incorrect passphrase" if a + * passphrase was supplied. + */ + if (passphrase != NULL && *passphrase != '\0') + r = SSH_ERR_KEY_WRONG_PASSPHRASE; + else + r = convert_libcrypto_error(); goto out; } if (EVP_PKEY_base_id(pk) == EVP_PKEY_RSA && |