From: Eric Hodel <drbrain@...7.net>
Date: 2012-01-31T09:47:50+09:00
Subject: [ruby-core:42281] [ruby-trunk - Bug #5951][Open] Exported RSA keys allow pass phrases that are too short


Issue #5951 has been reported by Eric Hodel.

----------------------------------------
Bug #5951: Exported RSA keys allow pass phrases that are too short
https://bugs.ruby-lang.org/issues/5951

Author: Eric Hodel
Status: Open
Priority: Normal
Assignee: Martin Bosslet
Category: ext
Target version: 
ruby -v: ruby 2.0.0dev (2011-12-20 trunk 34073) [x86_64-darwin11.2.0]


=begin

Exporting a key with this code:

  cipher = OpenSSL::Cipher::Cipher.new 'AES-128-CBC'
  pass_phrase = 'woo'

  key_secure = key.export cipher, pass_phrase

  open 'private.secure.pem', 'w' do |io|
    io.write key_secure
  end

Is not loadable:

  $ ruby20 -v -ropenssl -e 'OpenSSL::PKey::RSA.new File.read "private.secure.pem"' 
  ruby 2.0.0dev (2011-12-20 trunk 34073) [x86_64-darwin11.2.0]
  Enter PEM pass phrase: # I typed woo
  phrase is too short, needs to be at least 4 chars

=end



-- 
http://bugs.ruby-lang.org/