[Bug 2913] Reading PEM keys might fail if they decrypt to garbage with zero-length passprahse with new OpenSSL 1.1.0i

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Thu Oct 4 16:18:36 AEST 2018


https://bugzilla.mindrot.org/show_bug.cgi?id=2913

--- Comment #3 from Tomas Mraz <t8m at centrum.cz> ---
Because zero length encryption keys are technically possible and so it
is not a bug to try to decrypt encrypted data with zero length keys.

Basically openssh here depended on undocumented behavior of openssl and
this patch makes it not to depend on it anymore.

-- 
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list