forked from pyca/cryptography
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Support loading Ed448 public keys in OpenSSH format
The 'ssh-ed448' key type is documented along with 'ssh-ed25519' in [1], but has never been supported by any as-yet-released version of OpenSSH. However, LANcom router devices (which appear to be primarily used in Germany, see [2] for examples on the public Internet) appear to support these keys, so this library can and should support loading them. Ed448 private keys are not yet implemented here, because OpenSSH itself does not yet support them, and it is the de facto authority for private key formats. However, PuTTY has already implemented support for generating and using Ed448 keys, and the PuTTY developers note in [3] that the OpenSSH developers are in agreement with them as to the correct Ed448 private key format: > I checked with them [OpenSSH developers], and they agreed that there's an > obviously right format for Ed448 keys, which is to do them exactly like > Ed25519 except that you have a 57-byte string everywhere Ed25519 had a > 32-byte string. So I've done that. See also [4] in which I extended `ssh-audit` to allow it to scan and discover host keys of type 'ssh-ed488'. [1] https://datatracker.ietf.org/doc/html/rfc8709#name-public-key-format [2] https://www.shodan.io/search?query=ssh+%22ed448%22 [3] github/putty@a085acb [4] jtesta/ssh-audit#277
- Loading branch information
Showing
6 changed files
with
139 additions
and
5 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
10 changes: 10 additions & 0 deletions
10
vectors/cryptography_vectors/asymmetric/OpenSSH/ed448-nopsw.key
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,10 @@ | ||
-----BEGIN OPENSSH PRIVATE KEY----- | ||
b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAASgAAAAlz | ||
c2gtZWQ0NDgAAAA5WfsOenYSJmThRkWIk/756lJEUf80I1OI4Fn/aivtVCTaJQGB | ||
G2X8qpzJ5tcQWQ8MhrmUluuyXcOAAAAA4JbJTBqWyUwaAAAACXNzaC1lZDQ0OAAA | ||
ADlZ+w56dhImZOFGRYiT/vnqUkRR/zQjU4jgWf9qK+1UJNolAYEbZfyqnMnm1xBZ | ||
DwyGuZSW67Jdw4AAAAByHK1uGuiS00cBcquWyWTyqAHJb5KIA4iF7TSVwBmnI6yr | ||
HHSdOh2EnHF4TajD3t4xTp/QBs9OlMoAWfsOenYSJmThRkWIk/756lJEUf80I1OI | ||
4Fn/aivtVCTaJQGBG2X8qpzJ5tcQWQ8MhrmUluuyXcOAAAAAEmVkZHNhLWtleS0y | ||
MDI0MDcxOAEC | ||
-----END OPENSSH PRIVATE KEY----- |
1 change: 1 addition & 0 deletions
1
vectors/cryptography_vectors/asymmetric/OpenSSH/ed448-nopsw.key.pub
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
ssh-ed448 AAAACXNzaC1lZDQ0OAAAADnR1kKYxWp4R72f7vmMVuFImqzJIUKAxJnx23FjBYDQJK2PsoxzyghnPgXNkAYK+UOUIsoPfOrdJwA= |