add support for new OpenSSH private key format

[jaredhobbs]

This work is based off the work done in #618

[ploxiln]

Is it not possible for the code supporting the new format in ed25519key.py to be removed, and for Ed25519Key to use the shared code now in PKey for that instead?

[jaredhobbs]

Probably. I'll investigate when I get some free time but I'm pretty swamped at the moment.

[thomasd3]

Is there any ETA for when the new format could be supported?

[carumusan]

Please merge this. Looks like since OpenSSH 7.8 (released 6 months ago 2018-08-24) the new format is the default. https://www.openssh.com/txt/release-7.8

[dgjustice]

Bump! Fedora 29, openssh 7.9p1. Paramiko can't read my private key files without this change.

[bdrydyk]

Bumping this as well. This has broken my automation from OS X Mojave

[mitom]

Is there anything blocking this that requires help? Lacking this is causing major issues for us.

[kindlehl]

I'm currently having issues as well. Broken on Debian 9

[aedelbro]

Would it not be better to make it a raw string and drop flake comment?
r"^-{5}BEGIN (RSA|DSA|EC|OPENSSH) PRIVATE KEY-{5}\s*$"
https://lintlyci.github.io/Flake8Rules/rules/W605.html

[jaredhobbs]

Would it not be better to make it a raw string and drop flake comment?
r"^-{5}BEGIN (RSA|DSA|EC|OPENSSH) PRIVATE KEY-{5}\s*$"
https://lintlyci.github.io/Flake8Rules/rules/W605.html

Yes, fixed.

[pgierz]

Any idea when this will go in?

[ploxiln]

this doesn't work: sigkey needs to be an integer, and curve needs to be translated into one of the Curve objects in _ECDSA_CURVES

noticed while working on my port and cleanup of this. here's a test to show the errors:
https://github.com/ploxiln/paramiko-ng/pull/13/files#diff-523fff3457d80985c9d2429eb3aecb6e
the fix is mixed into my large refactor, since I figured this out towards the end:
https://github.com/ploxiln/paramiko-ng/pull/13/files#diff-00344f8a080e03112e93210cdfd37302

[ploxiln]

this unpad suffers from roughly the same bug I fixed for Ed25519Key in #1400

[greenscar]

any movement? We all know Apple is the new Microsoft, doing everything their own way. However, It kinda sucks when I can't run Ansible / Testinfra from my mac box due to
paramiko.ssh_exception.SSHException: not a valid RSA private key file"

[newearthmartin]

Can someone please merge this? It has been open for months. Fabric/paramiko is failing on mac.

[joaquinclearmetal]

It would be nice if Paramiko supported SSH. I have to recreate keys if they were created on macOS (and apparently this affects Fedora).

[ChrisEdgington]

I was able to fix this problem by converting my macos id_rsa to pem format via:

ssh-keygen -p -m PEM -f ~/.ssh/id_rsa

[cbonitz]

OpenSSH formatted private keys seem to be the default on Ubuntu 19.04, just like on MacOS and Fedora as mentioned by previous commenters. This is not an edge case anymore, this will concern almost all users of unix-like operating systems very soon.

[XVilka]

Would be nice to have this finally merged.

[jamesharris-garmin]

Could we please just run black on pkey and resolve the tests on tests/test_pkey.py?

[bitprophet]

Diving into reviewing/tweaking/merging this now. Thanks for everyone who's been keeping the patchset rolling, and for everyone's patience 🙏

[bitprophet]

Merged to latest master & blackened, taking a look:

• No changelog? 😢 Added an entry and linked to most of the major related tickets (sob, there are so many) including crediting a pile of folks ❤️
• This code only seems to support BEGIN OPENSSH PRIVATE KEY style heads and not "real" RFC 4716 style headers which are BEGIN SSH2 PRIVATE KEY.
  • However, since ssh-keygen only appears to spit out the former header style, and given I'm not experienced with these formats yet myself, I'm going to leave this be.
    • Suspect OpenSSH departed from the RFC afterwards for whatever reason, and this problem domain (OpenSSH compatibility) is definitely one where practice trumps theory 😂
  • Should be pretty easy to extend it later for the variant if folks need it.
• Renamed the new keys a bit, it wasn't clear to me offhand why they were named <size>_o.key, guessing o for OpenSSH, but I like obvious naming...
• Not a huge fan of the (as far as I can tell) internal-only format signifier constants (eg PKey.PRIVATE_KEY_FORMAT_ORIGINAL) but it's not a great use of my time to clean things up to that level, so I settled for:
  • making them private so they're not part of the public API and can be tweaked later
  • updating the exceptions raised when they go off the rails (they were not consistent or terrifically readable).
    • also I'm honestly not even sure how we can end up in that particular code branch (the code that spits out the pkformat value would raise its own exception first!) but again, going to avoid rocking the boat too much for now, in case I'm misreading this.
• Renamed references to "old/new format" as "pem/openssh" to be clearer (to me, anyway)
• Added tests for the exception behavior around invalid key types (this is, AFAICT, an original sin, but this is a great time to add new tests for it) Never mind, this stuff is still too hairy to mess with outside of a #387 style overhaul
• It's not clear to me why PKey._uint32_cstruct_unpack does a blanket "any exception is transmuted into an equivalent SSHException". I don't recall this being any sort of contract of Paramiko's behavior, and if anything, we are trying to dial down the abuse of "everything is this one exception class" from the old days. All this does it make it harder to tell quite what broke?
  • After more digging: this is likely because a bunch of mid-level code such as SSHClient attempts to ask the question "did code that reads SSH keys have a problem with a given key? Ignore that for now and move on to the next auth method".
  • I really don't like this (that code should arguably just be doing a bare except, as that is one of the few acceptable use cases for such) but it is an established pattern, just one I'd not been super aware of. Something to axe in #387 too probably. Settled for a comment for now.
• Cleaned up some "foo" + str(val) + "bar" style string interpolation. Folks, it's 2019, we have .format() and (once we drop Python <3.5...in, probably, 2030...) f-strings now. (This is admittedly something around the codebase from its 2004 days, as well...got some of those too...)
• Did some final real world manual tests with new keys generated on my (macOS Mojave) system's ssh-keygen.

[bitprophet]

This will be out in Paramiko 2.7 (only one more ticket after this one before that's cut!)

[grant-humphries]

@bitprophet thank you for your work on this!!

[jaredhobbs]

thanks so much!

[johnnybubonic]

yay

please don't forget about #1136 and #1261 too! they should be able to be resolved now that this format's supported.

[bitprophet]

@johnnybubonic I put 'em in a milestone, I can't say when they'll be gotten to but at least they're on my radar now, thank you!