File: private_key.rb

package info (click to toggle)
ruby-ssh-data 1.3.0-2
  • links: PTS, VCS
  • area: main
  • in suites: bookworm, forky, sid, trixie
  • size: 184 kB
  • sloc: ruby: 1,483; makefile: 4
file content (73 lines) | stat: -rw-r--r-- 2,253 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
 
module SSHData
  module PrivateKey
    OPENSSH_PEM_TYPE   = "OPENSSH PRIVATE KEY"
    RSA_PEM_TYPE       = "RSA PRIVATE KEY"
    DSA_PEM_TYPE       = "DSA PRIVATE KEY"
    ECDSA_PEM_TYPE     = "EC PRIVATE KEY"
    ENCRYPTED_PEM_TYPE = "ENCRYPTED PRIVATE KEY"

    # Parse an SSH private key.
    #
    # key - A PEM or OpenSSH encoded private key.
    #
    # Returns an Array of PrivateKey::Base subclass instances.
    def self.parse(key)
      pem_type = Encoding.pem_type(key)
      case pem_type
      when OPENSSH_PEM_TYPE
        parse_openssh(key)
      when RSA_PEM_TYPE
        [RSA.from_openssl(OpenSSL::PKey::RSA.new(key, ""))]
      when DSA_PEM_TYPE
        [DSA.from_openssl(OpenSSL::PKey::DSA.new(key, ""))]
      when ECDSA_PEM_TYPE
        [ECDSA.from_openssl(OpenSSL::PKey::EC.new(key, ""))]
      when ENCRYPTED_PEM_TYPE
        raise DecryptError, "cannot decode encrypted private keys"
      else
        raise AlgorithmError, "unknown PEM type: #{pem_type.inspect}"
      end
    rescue OpenSSL::PKey::PKeyError => e
      raise DecodeError, "bad private key. maybe encrypted?"
    end

    # Parse an OpenSSH formatted private key.
    #
    # key - An OpenSSH encoded private key.
    #
    # Returns an Array of PrivateKey::Base subclass instances.
    def self.parse_openssh(key)
      raw = Encoding.decode_pem(key, OPENSSH_PEM_TYPE)

      data, read = Encoding.decode_openssh_private_key(raw)
      unless read == raw.bytesize
        raise DecodeError, "unexpected trailing data"
      end

      from_data(data)
    end

    def self.from_data(data)
      data[:private_keys].map do |priv|
        case priv[:algo]
        when PublicKey::ALGO_RSA
          RSA.new(**priv)
        when PublicKey::ALGO_DSA
          DSA.new(**priv)
        when PublicKey::ALGO_ECDSA256, PublicKey::ALGO_ECDSA384, PublicKey::ALGO_ECDSA521
          ECDSA.new(**priv)
        when PublicKey::ALGO_ED25519
          ED25519.new(**priv)
        else
          raise DecodeError, "unkown algo: #{priv[:algo].inspect}"
        end
      end
    end
  end
end

require "ssh_data/private_key/base"
require "ssh_data/private_key/rsa"
require "ssh_data/private_key/dsa"
require "ssh_data/private_key/ecdsa"
require "ssh_data/private_key/ed25519"