-
Notifications
You must be signed in to change notification settings - Fork 25
/
key_ecdsa.go
120 lines (102 loc) · 2.95 KB
/
key_ecdsa.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
package ssh
import (
"fmt"
"errors"
"math/big"
"crypto"
"crypto/ecdsa"
"crypto/elliptic"
"golang.org/x/crypto/ssh"
)
// ecdsa
type KeyEcdsa struct {}
// 包装
func (this KeyEcdsa) Marshal(key crypto.PrivateKey, comment string) (string, []byte, []byte, error) {
k, ok := key.(*ecdsa.PrivateKey)
if !ok {
return "", nil, nil, errors.New(fmt.Sprintf("unsupported key type %T", key))
}
var curve, keyType string
switch k.Curve.Params().Name {
case "P-256":
curve = "nistp256"
keyType = ssh.KeyAlgoECDSA256
case "P-384":
curve = "nistp384"
keyType = ssh.KeyAlgoECDSA384
case "P-521":
curve = "nistp521"
keyType = ssh.KeyAlgoECDSA521
default:
return "", nil, nil, errors.New(fmt.Sprintf("error serializing key: unsupported curve %s", k.Curve.Params().Name))
}
pub := elliptic.Marshal(k.Curve, k.PublicKey.X, k.PublicKey.Y)
// Marshal public key.
pubKey := struct {
KeyType string
Curve string
Pub []byte
}{
keyType, curve, pub,
}
pubkey := ssh.Marshal(pubKey)
// Marshal private key.
prikey := struct {
Curve string
Pub []byte
D *big.Int
Comment string
}{
curve, pub, k.D,
comment,
}
rest := ssh.Marshal(prikey)
return keyType, pubkey, rest, nil
}
// 解析
func (this KeyEcdsa) Parse(rest []byte) (crypto.PrivateKey, string, error) {
key := struct {
Curve string
Pub []byte
D *big.Int
Comment string
Pad []byte `ssh:"rest"`
}{}
if err := ssh.Unmarshal(rest, &key); err != nil {
return nil, "", errors.New("error unmarshaling key." + err.Error())
}
if err := checkOpenSSHKeyPadding(key.Pad); err != nil {
return nil, "", err
}
var curve elliptic.Curve
switch key.Curve {
case "nistp256":
curve = elliptic.P256()
case "nistp384":
curve = elliptic.P384()
case "nistp521":
curve = elliptic.P521()
default:
return nil, "", errors.New(fmt.Sprintf("error decoding key: unsupported elliptic curve %s", key.Curve))
}
N := curve.Params().N
X, Y := elliptic.Unmarshal(curve, key.Pub)
if X == nil || Y == nil {
return nil, "", errors.New("error decoding key: failed to unmarshal public key")
}
if key.D.Cmp(N) >= 0 {
return nil, "", errors.New("error decoding key: scalar is out of range")
}
x, y := curve.ScalarBaseMult(key.D.Bytes())
if x.Cmp(X) != 0 || y.Cmp(Y) != 0 {
return nil, "", errors.New("error decoding key: public key does not match private key")
}
return &ecdsa.PrivateKey{
PublicKey: ecdsa.PublicKey{
Curve: curve,
X: X,
Y: Y,
},
D: key.D,
}, key.Comment, nil
}