Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add PKCS #8 and OpenVPN static key blocks #658

Merged
merged 2 commits into from Oct 2, 2021
Merged

Add PKCS #8 and OpenVPN static key blocks #658

merged 2 commits into from Oct 2, 2021

Conversation

ljmf00
Copy link
Contributor

@ljmf00 ljmf00 commented Oct 2, 2021

This PR includes two patches for PKCS #8 and OpenVPN static key blocks that often should be kept in private.

Please read the patches description for additional context.

Luís Ferreira added 2 commits October 2, 2021 20:53
@ljmf00
detect_private_key: add textual version of PKCS pre-commit#8 encryp…
ccdf02d 
…ted private keys

As described by RFC7468 and RFC5958, keys that are encoded using the "ENCRYPTED
PRIVATE KEY" label are described as private key information and therefore can
contain secrets, even though encrypted.

Signed-off-by: Luís Ferreira <contact@lsferreira.net>
@ljmf00
detect_private_key: add OpenVPN shared-secret key block
1b4e30e 
'OpenVPN Static key V1' label is often used by OpenVPN for providing hardening
security with additional HMAC signatures to the SSL/TLS handshake packets. They
are shared secrets and should be kept private.

Signed-off-by: Luís Ferreira <contact@lsferreira.net>
asottile
asottile approved these changes Oct 2, 2021
View reviewed changes
Copy link
Member

@asottile asottile left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@asottile asottile merged commit e35ba8d into pre-commit:master Oct 2, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@asottile asottile asottile approved these changes

Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@ljmf00 @asottile