Differential D8102

Detect and prompt for passwords on SSH private keys, then strip them
ClosedPublic
Actions

Authored by epriestley on Jan 29 2014, 10:53 PM.

Tags

None

Referenced Files

	F19765395: D8102.diff
	Thu, Feb 19, 2:28 AM

	F19525423: D8102.id18326.diff
	Jan 18 2026, 8:49 AM

	F19525422: D8102.id18326.diff
	Jan 18 2026, 8:49 AM

	F19503658: D8102.id18350.diff
	Jan 9 2026, 12:59 AM

	F19503657: D8102.id18326.diff
	Jan 9 2026, 12:59 AM

	F18934468: D8102.id.diff
	Nov 10 2025, 3:06 PM

	F18928556: D8102.diff
	Nov 9 2025, 9:57 PM

	F18830975: D8102.id18326.diff
	Oct 25 2025, 9:56 AM

Subscribers

Details

Reviewers

Maniphest Tasks

T4356: Passphrase should detect passworded SSH keys, and prompt you to enter the password and strip them

Commits

Restricted Diffusion Commit
rPeb397a48b48e: Detect and prompt for passwords on SSH private keys, then strip them

Summary

Fixes T4356. Currently, if users add a passworded private key to the Passphrase application, we never ask for the password and can not use it later. This makes several changes:

Prompt for the password.
Detect passworded private keys, and don't accept them until we can decrypt them.
Try to decrypt passworded private keys, and tell the user if the password is missing or incorrect.
Stop further creation of path-based private keys, which are really just for compatibility. We can't do anything reasonable about passwords with these, since users can change the files.

Test Plan

Created a private key with a password, was prompted to provide it, tried empty/bad passwords, provided the correct password and had the key decrypted for use.

Diff Detail

Repository

Branch

passkeys

Lint

Lint Passed

Unit

No Test Coverage

Event Timeline

btrahan accepted this revision.Jan 30 2014, 7:17 PM

Closed by commit rPeb397a48b48e (authored by @epriestley).

Revision Contents
Changeset List

Path

Size

src/

applications/

passphrase/

controller/

PassphraseCredentialCreateController.php

2 lines

PassphraseCredentialEditController.php

185 lines

credentialtype/

PassphraseCredentialType.php

81 lines

PassphraseCredentialTypeSSHPrivateKeyFile.php

8 lines

PassphraseCredentialTypeSSHPrivateKeyText.php

42 lines

Diff 18326

src/applications/passphrase/controller/PassphraseCredentialCreateController.php

Loading...

src/applications/passphrase/controller/PassphraseCredentialEditController.php

Loading...

src/applications/passphrase/credentialtype/PassphraseCredentialType.php

Loading...

src/applications/passphrase/credentialtype/PassphraseCredentialTypeSSHPrivateKeyFile.php

Loading...

src/applications/passphrase/credentialtype/PassphraseCredentialTypeSSHPrivateKeyText.php

Loading...