Re: Can an SSH_MSG_EXT_INFO have zero entries?

To: Peter Gutmann <pgut001%cs.auckland.ac.nz@localhost>
Subject: Re: Can an SSH_MSG_EXT_INFO have zero entries?
From: Damien Miller <djm%mindrot.org@localhost>
Date: Thu, 6 Apr 2023 10:35:09 +1000 (AEST)

On Fri, 31 Mar 2023, Peter Gutmann wrote:

> 
> Someone has just reported an SSH implementation that sends SSH_MSG_EXT_INFO
> with zero extensions present, i.e.:
> 
>     byte       SSH_MSG_EXT_INFO (value 7)
>     uint32     0
>     (No extensions present in the extensions message)
> 
> The RFC says:
> 
>    Implementations MUST accept well-formed SSH_MSG_EXT_INFO messages up to the
>    maximum packet length they accept.
> 
> but never defines what a well-formed SSH_MSG_EXT_INFO message actually is.  In
> my case I've defined one with zero entries as not well-formed, since it's a
> message used to communicate extensions that communicates no actual extensions.
> 
> Should a message like this be accepted?

Sure, the extension list is defined as an array and an array with zero
length both valid and common (e.g. it's requried in RFC4256 and common in
sftp attribute extensions).

I don't know why a server should send such a message, but I don't see any
reason that a client should refuse it.

FWIW OpenSSH should accept such a message.

-d

References:
- Can an SSH_MSG_EXT_INFO have zero entries?
  - From: Peter Gutmann

Prev by Date: Re: Can an SSH_MSG_EXT_INFO have zero entries?
Next by Date: sntrup761x25519-sha512
Previous by Thread: Re: Can an SSH_MSG_EXT_INFO have zero entries?
Next by Thread: sntrup761x25519-sha512
Indexes:

Home | Main Index | Thread Index | Old Index