Class: OpenSSL::PKey::SSH

Inherits:

Object

• Object
• OpenSSL::PKey::SSH

Defined in:

lib/openssl/ssh.rb

Constant Summary

RSA_COMPONENTS =

['ssh-rsa', :e, :n].freeze

DSA_COMPONENTS =

['ssh-dss', :p, :q, :g, :pub_key].freeze

Class Method Summary

• .decode_mpi(mpi_str) ⇒ Object
• .decode_pubkey(string) ⇒ Object
• .forward_private_key(key, password) ⇒ Object
• .key_type_components(components) ⇒ Object
• .key_type_object(components) ⇒ Object
• .new(key, password = nil) ⇒ Object
• .parse_public_ssh_key(key) ⇒ Object
• .process_components(components) ⇒ Object
• .process_ops(key, ops) ⇒ Object
• .unpack_pubkey_components(str) ⇒ Object

Class Method Details

.decode_mpi(mpi_str) ⇒ Object

# File 'lib/openssl/ssh.rb', line 72

def self.decode_mpi(mpi_str)
  mpi_str.unpack('C*').inject(0) { |a, e| (a << 8) | e }
end

.decode_pubkey(string) ⇒ Object

# File 'lib/openssl/ssh.rb', line 32

def self.decode_pubkey(string)
  components = unpack_pubkey_components Base64.decode64(string)
  raise "Unsupported key type #{components.first}" unless components.first.match?(/#{RSA_COMPONENTS.first}|#{DSA_COMPONENTS.first}/)

  ops, key = process_components(components)
  process_ops(key, ops)
end

.forward_private_key(key, password) ⇒ Object

# File 'lib/openssl/ssh.rb', line 15

def self.forward_private_key(key, password)
  case key
  when /BEGIN RSA PRIVATE KEY/
    OpenSSL::PKey::RSA.new(key, password)
  when /BEGIN DSA PRIVATE KEY/
    OpenSSL::PKey::DSA.new(key, password)
  end
end

.key_type_components(components) ⇒ Object

# File 'lib/openssl/ssh.rb', line 40

def self.key_type_components(components)
  (components.first.match?(RSA_COMPONENTS.first) ? RSA_COMPONENTS : DSA_COMPONENTS).zip(components)
end

.key_type_object(components) ⇒ Object

# File 'lib/openssl/ssh.rb', line 44

def self.key_type_object(components)
  components.first.match?(RSA_COMPONENTS.first) ? OpenSSL::PKey::RSA.new : OpenSSL::PKey::DSA.new
end

.new(key, password = nil) ⇒ Object

# File 'lib/openssl/ssh.rb', line 11

def self.new(key, password = nil)
  forward_private_key(key, password) || parse_public_ssh_key(key)
end

.parse_public_ssh_key(key) ⇒ Object

# File 'lib/openssl/ssh.rb', line 24

def self.parse_public_ssh_key(key)
  if key && key.is_a?(String) && key.match?(/^ssh-/)
    key = key.split[1]
    key = decode_pubkey(key)
  end
  key
end

.process_components(components) ⇒ Object

# File 'lib/openssl/ssh.rb', line 48

def self.process_components(components)
  [key_type_components(components), key_type_object(components)]
end

.process_ops(key, ops) ⇒ Object

# File 'lib/openssl/ssh.rb', line 52

def self.process_ops(key, ops)
  ops.each do |o|
    next unless o.first.is_a? Symbol

    key.send "#{o.first}=", decode_mpi(o.last)
  end
  key
end

.unpack_pubkey_components(str) ⇒ Object

# File 'lib/openssl/ssh.rb', line 61

def self.unpack_pubkey_components(str)
  cs = []
  i = 0
  while i < str.length
    len = str[i, 4].unpack1('N')
    cs << str[i + 4, len]
    i += 4 + len
  end
  cs
end