CWE-322 InsecureHostKeyCallback #234
Conversation
Co-authored-by: Max Schaefer <54907921+max-schaefer@users.noreply.github.com>
Co-authored-by: Max Schaefer <54907921+max-schaefer@users.noreply.github.com>
Co-authored-by: Max Schaefer <54907921+max-schaefer@users.noreply.github.com>
Co-authored-by: Max Schaefer <54907921+max-schaefer@users.noreply.github.com>
Co-authored-by: Max Schaefer <54907921+max-schaefer@users.noreply.github.com>
This is automatically added
Show both insecure examples and a secure example.
The DataFlow::FunctionNode class provides the member predicate getAResult that gets a value returned by the underlying function, if any.
Changing hijack attack, describing multiple different possible attacks, to Machine-in-the-Middle attack that describe the exact attack that can be performed when an insecure host key callback is used.
ResultNode covers both cases. Regarding "if any", we normally only use that for predicates that have at most one result. Co-authored-by: Max Schaefer <54907921+max-schaefer@users.noreply.github.com>
Co-authored-by: Max Schaefer <54907921+max-schaefer@users.noreply.github.com>
The generated stub copies code from golang/crypto.
|
@max-schaefer since this PR updates |
That will get updated automatically at some point. No need to do anything about it in this PR. |
|
Thanks @max-schaefer, @adityasharad, @brompwnie, and @intrigus-lgtm for contributing ✨ |
|
Many thanks @rvermeulen for your contribution! |
|
@rvermeulen to give you the same tip Max gave me on my first PR:
(Although this PR got squashed it seems, so in this case it didn't matter) |
Thanks! That is a great suggestion. It felt off not being able to batch the suggested code changes, but now I known it is possible. |
ReflectedXss: Remove FPs from constant prefix Fprintfs
Add support for the detection of insecure host key callback implementations that accept any host key when establishing a SSH connection.