ssh-agent: Make public key parsing robuster (f3f3cc70) · Commits · GNOME / gnome-keyring · GitLab

Commit f3f3cc70 authored Apr 30, 2018 by

Daiki Ueno

ssh-agent: Make public key parsing robuster

Previously, _gkd_ssh_agent_parse_public_key() accepted OpenSSH v1
keys, because the second component of the key line looks like a valid
base64 blob:

  2048 65537 2444136...

This patch checks that the component is really base64 encoded, by
checking the length is a multiple of 4.

Note that this solution is not perfect, as there could be a key with a
public exponent whose decimal length is multiple of 4.  More thorough
approach would be to call ssh-keygen -l on each public key.

https://bugzilla.gnome.org/show_bug.cgi?id=795699

parent 0b4e2e89

Hide whitespace changes

Inline Side-by-side

Daiki Ueno @dueno
mentioned in commit cc8d6cd1
· Jul 14, 2018

mentioned in commit cc8d6cd1

mentioned in commit cc8d6cd12aff280f1a32b15238508a64931381d6

Toggle commit list
Daiki Ueno @dueno
mentioned in merge request !2 (merged)
· Jul 14, 2018

mentioned in merge request !2 (merged)

mentioned in merge request !2

Toggle commit list

Please register or to comment