simon-git: putty (master): Simon Tatham
Commits to Tartarus CVS repository.
tartarus-commits at lists.tartarus.org
Fri May 15 14:04:30 BST 2015
TL;DR:
dee305c Fix mpint signedness bug in importing PEM ECDSA keys.
Repository: git://git.tartarus.org/simon/putty.git
On the web: http://tartarus.org/~simon-git/gitweb/?p=putty.git
Branch updated: master
Committer: Simon Tatham <anakin at pobox.com>
Date: 2015-05-15 14:04:30
commit dee305c318fa9b9f2213032dfaf0ccd4c220f16d
web diff http://tartarus.org/~simon-git/gitweb/?p=putty.git;a=commitdiff;h=dee305c318fa9b9f2213032dfaf0ccd4c220f16d;hp=8dab2c24404b6f14ffb9472799d7621077a73bd6
Author: Simon Tatham <anakin at pobox.com>
Date: Fri May 15 14:01:35 2015 +0100
Fix mpint signedness bug in importing PEM ECDSA keys.
The OpenSSH PEM format contains a big integer with the top bit
potentially set, which we handle by copying the data into a faked up
instance of our own private key format, and passing that to
ecdsa_createkey(). But our own private key format expects an SSH-2
standard mpint, i.e. with the top bit reliably clear, so this might
fail for no good reason.
Fixed by prefixing a zero byte unconditionally when constructing the
fake private blob.
import.c | 16 ++++++++++++----
1 file changed, 12 insertions(+), 4 deletions(-)
More information about the tartarus-commits
mailing list