Re: OpenSSH bug in decoding EXT_INFO extension values

"denis bider \(Bitvise\)" <ietf-ssh3@denisbider.com> Sat, 24 June 2017 08:32 UTC

Return-Path: <bounces-ietf-ssh-owner-secsh-tyoxbijeg7-archive=lists.ietf.org@NetBSD.org>
X-Original-To: ietfarch-secsh-tyoxbijeg7-archive@ietfa.amsl.com
Delivered-To: ietfarch-secsh-tyoxbijeg7-archive@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 13561127868 for <ietfarch-secsh-tyoxbijeg7-archive@ietfa.amsl.com>; Sat, 24 Jun 2017 01:32:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.39
X-Spam-Level:
X-Spam-Status: No, score=-1.39 tagged_above=-999 required=5 tests=[BAYES_50=0.8, DKIM_SIGNED=0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001, T_DKIM_INVALID=0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=fail (2048-bit key) reason="fail (body has been altered)" header.d=denisbider.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QZGVwoJFNGKQ for <ietfarch-secsh-tyoxbijeg7-archive@ietfa.amsl.com>; Sat, 24 Jun 2017 01:32:18 -0700 (PDT)
Received: from mail.netbsd.org (mail.NetBSD.org [IPv6:2001:470:a085:999::25]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3A3281242F5 for <secsh-tyoxbijeg7-archive@lists.ietf.org>; Sat, 24 Jun 2017 01:32:18 -0700 (PDT)
Received: by mail.netbsd.org (Postfix, from userid 605) id 4EE4984DE0; Sat, 24 Jun 2017 08:32:16 +0000 (UTC)
Delivered-To: ietf-ssh@netbsd.org
Received: by mail.netbsd.org (Postfix, from userid 1347) id EE03E84D9C; Sat, 24 Jun 2017 08:32:15 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1]) by mail.netbsd.org (Postfix) with ESMTP id E24FE84DA1 for <ietf-ssh@netbsd.org>; Fri, 23 Jun 2017 13:19:55 +0000 (UTC)
X-Virus-Scanned: amavisd-new at netbsd.org
Authentication-Results: mail.netbsd.org (amavisd-new); dkim=pass (2048-bit key) header.d=denisbider.com
Received: from mail.netbsd.org ([IPv6:::1]) by localhost (mail.netbsd.org [IPv6:::1]) (amavisd-new, port 10025) with ESMTP id uEwMhB0jifpu for <ietf-ssh@netbsd.org>; Fri, 23 Jun 2017 13:19:55 +0000 (UTC)
Received: from skroderider.denisbider.com (skroderider.denisbider.com [50.18.172.175]) (using TLSv1.1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.netbsd.org (Postfix) with ESMTPS id 45BEA84CDD for <ietf-ssh@netbsd.org>; Fri, 23 Jun 2017 13:19:55 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=denisbider.com; s=mail; h=from:subject:date:message-id:to:cc:mime-version:content-type:in-reply-to: references; bh=vdbFB9Nm4jVlEE91iX/r38UPJFPDl5qdHYh9YbIvAOk=; b=iPOgF0RmxysxWDB3RRCl/C1BUFQIsbkkPMkKHumkBxQIdGxlbOq9Fx7EY3IHCJze5VxdwLyTdpf5U rrIN1s9mqPMejIY1o1A46hi2uX5dUCMOjoYdx/ZQ4ovo8JhtSTdxL0FI7kvIIR/atgR5aMAuDPM2Ty Df2L80KEMdgkepVQWIsjCzpKlL0f7GTf9Emn8+p0iH+aBB+p+xEBigvwJIVyCm/6LAoDF3RYNVMKKd Oxeeqzn4dMrmEdyQKhpExEttGMU7UO3Ar4MSYkAJ0DbTGyLNMIfZPUEsHVwcY+5nl4kVfjoInf0dQu pg7v5+dywleF3jJVPtcMfSlizjLPMCA==
X-Footer: ZGVuaXNiaWRlci5jb20=
Received: from localhost ([127.0.0.1]) by skroderider.denisbider.com with ESMTPSA (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256 bits)); Fri, 23 Jun 2017 14:19:33 +0100
Message-ID: <43E5E2A1DD834CDE8432FCA0EBFB32E3@Khan>
From: "denis bider (Bitvise)" <ietf-ssh3@denisbider.com>
To: Markus Friedl <mfriedl@gmail.com>
Cc: Damien Miller <djm@mindrot.org>, ietf-ssh@netbsd.org
References: <FC64DEB4AC654FDFA7150BA5D0351CF8@Khan> <alpine.BSO.2.20.1706132110520.76321@natsu.mindrot.org> <76D46D670C0D4EED9447537DB7C131E3@Khan> <CACANGe=O7LLe7JR2yMGBGHOf_RKZaEB8ZZVxsJ9=3XSarUmjGA@mail.gmail.com>
In-Reply-To: <CACANGe=O7LLe7JR2yMGBGHOf_RKZaEB8ZZVxsJ9=3XSarUmjGA@mail.gmail.com>
Subject: Re: OpenSSH bug in decoding EXT_INFO extension values
Date: Fri, 23 Jun 2017 07:18:25 -0600
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_NextPart_000_0206_01D2EBF0.E7B2F870"
X-Priority: 3
X-MSMail-Priority: Normal
Importance: Normal
X-Mailer: Microsoft Windows Live Mail 16.4.3528.331
X-MimeOLE: Produced By Microsoft MimeOLE V16.4.3528.331
Sender: ietf-ssh-owner@NetBSD.org
List-Id: ietf-ssh.NetBSD.org
Precedence: list
List-Unsubscribe: <mailto:majordomo@NetBSD.org?subject=Unsubscribe%20ietf-ssh&body=unsubscribe%20ietf-ssh>

Aye – I thought there’s nothing simpler than:

  string extension-name
  string extension-value <= can contain any value!

But... there we go. :)

It’s fascinating how much non-simplicity one discovers in things that seem simple. *sigh* You know what the most common misunderstanding of our users is?

They don’t know what’s a “client” and what’s a “server”.


From: Markus Friedl 
Sent: Friday, June 23, 2017 06:41
To: denis bider (Bitvise) 
Cc: Damien Miller ; ietf-ssh@netbsd.org 
Subject: Re: OpenSSH bug in decoding EXT_INFO extension values


2017-06-14 11:43 GMT+02:00 denis bider (Bitvise) <ietf-ssh3@denisbider.com>:

> And when you do that, I am then peeved if you simultaneously abrogate this
> responsibility, by developing, planning, and designing sloppily.

Just try to make simpler protocol extensions, so I can keep seeing sloppy

-m