Class: Net::SSH::Authentication::ED25519::PrivKey

Inherits:

Object

Object
Net::SSH::Authentication::ED25519::PrivKey

show all

Defined in:: lib/net/ssh/authentication/ed25519.rb

Constant Summary collapse

CipherFactory =

Net::SSH::Transport::CipherFactory

MBEGIN =

"-----BEGIN OPENSSH PRIVATE KEY-----\n"

MEND =

"-----END OPENSSH PRIVATE KEY-----\n"

MAGIC =

"openssh-key-v1"

Instance Attribute Summary collapse

#sign_key ⇒ Object readonly

Returns the value of attribute sign_key.

Class Method Summary collapse

Instance Method Summary collapse

#initialize(datafull, password) ⇒ PrivKey constructor

A new instance of PrivKey.
#public_key ⇒ Object
#ssh_do_sign(data) ⇒ Object
#ssh_signature_type ⇒ Object
#ssh_type ⇒ Object
#to_blob ⇒ Object

Constructor Details

#initialize(datafull, password) ⇒ `PrivKey`

Returns a new instance of PrivKey.

Raises:

(ArgumentError)

# File 'lib/net/ssh/authentication/ed25519.rb', line 75

def initialize(datafull,password)
  raise ArgumentError.new("Expected #{MBEGIN} at start of private key") unless datafull.start_with?(MBEGIN)
  raise ArgumentError.new("Expected #{MEND} at end of private key") unless datafull.end_with?(MEND)
  datab64 = datafull[MBEGIN.size ... -MEND.size]
  data = Base64.decode64(datab64)
  raise ArgumentError.new("Expected #{MAGIC} at start of decoded private key") unless data.start_with?(MAGIC)
  buffer = Net::SSH::Buffer.new(data[MAGIC.size+1 .. -1])

  ciphername = buffer.read_string
  raise ArgumentError.new("#{ciphername} in private key is not supported") unless
    CipherFactory.supported?(ciphername)

  kdfname = buffer.read_string
  raise ArgumentError.new("Expected #{kdfname} to be or none or bcrypt") unless %w(none bcrypt).include?(kdfname)

  kdfopts = Net::SSH::Buffer.new(buffer.read_string)
  num_keys = buffer.read_long
  raise ArgumentError.new("Only 1 key is supported in ssh keys #{num_keys} was in private key") unless num_keys == 1
  _pubkey = buffer.read_string

  len = buffer.read_long

  keylen, blocksize, ivlen = CipherFactory.get_lengths(ciphername, iv_len: true)
  raise ArgumentError.new("Private key len:#{len} is not a multiple of #{blocksize}") if
    ((len < blocksize) || ((blocksize > 0) && (len % blocksize) != 0))

  if kdfname == 'bcrypt'
    salt = kdfopts.read_string
    rounds = kdfopts.read_long

    raise "BCryptPbkdf is not implemented for jruby" if RUBY_PLATFORM == "java"
    key = BCryptPbkdf::key(password, salt, keylen + ivlen, rounds)
  else
    key = '\x00' * (keylen + ivlen)
  end

  cipher = CipherFactory.get(ciphername, key: key[0...keylen], iv:key[keylen...keylen+ivlen], decrypt: true)

  decoded = cipher.update(buffer.remainder_as_buffer.to_s)
  decoded << cipher.final

  decoded = Net::SSH::Buffer.new(decoded)
  check1 = decoded.read_long
  check2 = decoded.read_long

  raise ArgumentError, "Decrypt failed on private key" if (check1 != check2)

  _type_name = decoded.read_string
  pk = decoded.read_string
  sk = decoded.read_string
  _comment = decoded.read_string

  @pk = pk
  @sign_key = SigningKeyFromFile.new(pk,sk)
end

Instance Attribute Details

#sign_key ⇒ `Object` (readonly)

Returns the value of attribute sign_key.



73
74
75

# File 'lib/net/ssh/authentication/ed25519.rb', line 73

def sign_key
  @sign_key
end

Class Method Details

.read(data, password) ⇒ `Object`



151
152
153

# File 'lib/net/ssh/authentication/ed25519.rb', line 151

def self.read(data,password)
  self.new(data,password)
end

.read_keyblob(buffer) ⇒ `Object`



155
156
157

# File 'lib/net/ssh/authentication/ed25519.rb', line 155

def self.read_keyblob(buffer)
  ED25519::PubKey.read_keyblob(buffer)
end

Instance Method Details

#public_key ⇒ `Object`



143
144
145

# File 'lib/net/ssh/authentication/ed25519.rb', line 143

def public_key
  PubKey.new(@pk)
end

#ssh_do_sign(data) ⇒ `Object`



147
148
149

# File 'lib/net/ssh/authentication/ed25519.rb', line 147

def ssh_do_sign(data)
  @sign_key.sign(data)
end

#ssh_signature_type ⇒ `Object`



139
140
141

# File 'lib/net/ssh/authentication/ed25519.rb', line 139

def ssh_signature_type
  ssh_type
end

#ssh_type ⇒ `Object`



135
136
137

# File 'lib/net/ssh/authentication/ed25519.rb', line 135

def ssh_type
  "ssh-ed25519"
end

#to_blob ⇒ `Object`



131
132
133

# File 'lib/net/ssh/authentication/ed25519.rb', line 131

def to_blob
  public_key.to_blob
end

Class: Net::SSH::Authentication::ED25519::PrivKey

Constant Summary collapse

Instance Attribute Summary collapse

Class Method Summary collapse

Instance Method Summary collapse

Constructor Details

#initialize(datafull, password) ⇒ PrivKey

Instance Attribute Details

#sign_key ⇒ Object (readonly)

Class Method Details

.read(data, password) ⇒ Object

.read_keyblob(buffer) ⇒ Object

Instance Method Details

#public_key ⇒ Object

#ssh_do_sign(data) ⇒ Object

#ssh_signature_type ⇒ Object

#ssh_type ⇒ Object

#to_blob ⇒ Object

#initialize(datafull, password) ⇒ `PrivKey`

#sign_key ⇒ `Object` (readonly)

.read(data, password) ⇒ `Object`

.read_keyblob(buffer) ⇒ `Object`

#public_key ⇒ `Object`

#ssh_do_sign(data) ⇒ `Object`

#ssh_signature_type ⇒ `Object`

#ssh_type ⇒ `Object`

#to_blob ⇒ `Object`