Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

SSH format should ideally check more than 4 bytes for new format OpenSSH private keys #5748

Open
solardiz opened this issue Apr 3, 2025 · 0 comments
Open

SSH format should ideally check more than 4 bytes for new format OpenSSH private keys #5748

solardiz opened this issue Apr 3, 2025 · 0 comments
Labels
enhancement
Milestone
Potentially 2.0.0

Comments

@solardiz
Copy link
Member

solardiz commented Apr 3, 2025

For new format OpenSSH private keys, which use bcrypt-pbkdf, we check only 4 bytes. For our 4 test vectors, the decrypted data starts with:

c38767f8 c38767f8 00000013 65636473
e2e9392d e2e9392d 0000000b 7373682d
3eb37c71 3eb37c71 00000013 65636472
c785799f c785799f 0000000b 73736832

Per OpenSSH's PROTOCOL.key, the two 32-bit checkint fields are immediately followed by privatekey1, "where each private key is encoded using the same rules as used for SSH agent." So we may need to find those rules. The above looks like it's length field followed by ASCII key type id (ssh2 or ecdr), but it's better to know for sure per spec.

I also found https://coolaj86.com/articles/the-openssh-private-key-format/ which has some useful info, but is someone else figuring this out rather than an official spec.
@solardiz solardiz added this to the Potentially 2.0.0 milestone Apr 3, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
Potentially 2.0.0
Development

No branches or pull requests
1 participant
@solardiz