SSH public keys are encoded in a special binary format, typically represented to end users as either one-liner OpenSSH format or multi-line PEM format (commerical SSH). Text wrapper carries extra information about user who created the key, comment, etc, but the inner binary is always base64-encoded and follows the same internal format.
This format spec deals with this internal binary format (called "blob" in openssh sources) only. Buffer is expected to be raw binary and not base64-d. Implementation closely follows code in OpenSSH.
This page hosts a formal specification of SSH public key using Kaitai Struct. This specification can be automatically translated into a variety of programming languages to get a parsing library.
All parsing code for C++11/STL generated by Kaitai Struct depends on the C++/STL runtime library. You have to install it before you can parse data.
For C++, the easiest way is to clone the runtime library sources and build them along with your project.
Using Kaitai Struct in C++/STL usually consists of 3 steps.
std::istream). One can open local file for that, or use existing std::string or char* buffer.
#include <fstream>
std::ifstream is("path/to/local/file.bin", std::ifstream::binary);
#include <sstream>
std::istringstream is(str);
#include <sstream>
const char buf[] = { ... };
std::string str(buf, sizeof buf);
std::istringstream is(str);
#include "kaitai/kaitaistream.h"
kaitai::kstream ks(&is);
ssh_public_key_t data(&ks);
After that, one can get various attributes from the structure by invoking getter methods like:
data.key_name() // => get key name
#pragma once
// This is a generated file! Please edit source .ksy file and use kaitai-struct-compiler to rebuild
#include "kaitai/kaitaistruct.h"
#include <stdint.h>
#include <memory>
#if KAITAI_STRUCT_VERSION < 9000L
#error "Incompatible Kaitai Struct C++/STL API: version 0.9 or later is required"
#endif
/**
* SSH public keys are encoded in a special binary format, typically represented
* to end users as either one-liner OpenSSH format or multi-line PEM format
* (commerical SSH). Text wrapper carries extra information about user who
* created the key, comment, etc, but the inner binary is always base64-encoded
* and follows the same internal format.
*
* This format spec deals with this internal binary format (called "blob" in
* openssh sources) only. Buffer is expected to be raw binary and not base64-d.
* Implementation closely follows code in OpenSSH.
* \sa https://github.com/openssh/openssh-portable/blob/b4d4eda6/sshkey.c#L1970 Source
*/
class ssh_public_key_t : public kaitai::kstruct {
public:
class key_rsa_t;
class key_ed25519_t;
class key_ecdsa_t;
class cstring_t;
class key_dsa_t;
class elliptic_curve_t;
class bignum2_t;
ssh_public_key_t(kaitai::kstream* p__io, kaitai::kstruct* p__parent = nullptr, ssh_public_key_t* p__root = nullptr);
private:
void _read();
void _clean_up();
public:
~ssh_public_key_t();
/**
* \sa https://github.com/openssh/openssh-portable/blob/b4d4eda6/sshkey.c#L2011-L2028 Source
*/
class key_rsa_t : public kaitai::kstruct {
public:
key_rsa_t(kaitai::kstream* p__io, ssh_public_key_t* p__parent = nullptr, ssh_public_key_t* p__root = nullptr);
private:
void _read();
void _clean_up();
public:
~key_rsa_t();
private:
bool f_key_length;
int32_t m_key_length;
public:
/**
* Key length in bits
*/
int32_t key_length();
private:
std::unique_ptr<bignum2_t> m_rsa_e;
std::unique_ptr<bignum2_t> m_rsa_n;
ssh_public_key_t* m__root;
ssh_public_key_t* m__parent;
public:
/**
* Public key exponent, designated `e` in RSA documentation.
*/
bignum2_t* rsa_e() const { return m_rsa_e.get(); }
/**
* Modulus of both public and private keys, designated `n` in RSA
* documentation. Its length in bits is designated as "key length".
*/
bignum2_t* rsa_n() const { return m_rsa_n.get(); }
ssh_public_key_t* _root() const { return m__root; }
ssh_public_key_t* _parent() const { return m__parent; }
};
/**
* \sa https://github.com/openssh/openssh-portable/blob/b4d4eda6/sshkey.c#L2111-L2124 Source
*/
class key_ed25519_t : public kaitai::kstruct {
public:
key_ed25519_t(kaitai::kstream* p__io, ssh_public_key_t* p__parent = nullptr, ssh_public_key_t* p__root = nullptr);
private:
void _read();
void _clean_up();
public:
~key_ed25519_t();
private:
uint32_t m_len_pk;
std::string m_pk;
ssh_public_key_t* m__root;
ssh_public_key_t* m__parent;
public:
uint32_t len_pk() const { return m_len_pk; }
std::string pk() const { return m_pk; }
ssh_public_key_t* _root() const { return m__root; }
ssh_public_key_t* _parent() const { return m__parent; }
};
/**
* \sa https://github.com/openssh/openssh-portable/blob/b4d4eda6/sshkey.c#L2060-L2103 Source
*/
class key_ecdsa_t : public kaitai::kstruct {
public:
key_ecdsa_t(kaitai::kstream* p__io, ssh_public_key_t* p__parent = nullptr, ssh_public_key_t* p__root = nullptr);
private:
void _read();
void _clean_up();
public:
~key_ecdsa_t();
private:
std::unique_ptr<cstring_t> m_curve_name;
std::unique_ptr<elliptic_curve_t> m_ec;
ssh_public_key_t* m__root;
ssh_public_key_t* m__parent;
public:
cstring_t* curve_name() const { return m_curve_name.get(); }
elliptic_curve_t* ec() const { return m_ec.get(); }
ssh_public_key_t* _root() const { return m__root; }
ssh_public_key_t* _parent() const { return m__parent; }
};
/**
* A integer-prefixed string designed to be read using `sshbuf_get_cstring`
* and written by `sshbuf_put_cstring` routines in ssh sources. Name is an
* obscure misnomer, as typically "C string" means a null-terminated string.
* \sa https://github.com/openssh/openssh-portable/blob/b4d4eda6/sshbuf-getput-basic.c#L181 Source
*/
class cstring_t : public kaitai::kstruct {
public:
cstring_t(kaitai::kstream* p__io, kaitai::kstruct* p__parent = nullptr, ssh_public_key_t* p__root = nullptr);
private:
void _read();
void _clean_up();
public:
~cstring_t();
private:
uint32_t m_len;
std::string m_value;
ssh_public_key_t* m__root;
kaitai::kstruct* m__parent;
public:
uint32_t len() const { return m_len; }
std::string value() const { return m_value; }
ssh_public_key_t* _root() const { return m__root; }
kaitai::kstruct* _parent() const { return m__parent; }
};
/**
* \sa https://github.com/openssh/openssh-portable/blob/b4d4eda6/sshkey.c#L2036-L2051 Source
*/
class key_dsa_t : public kaitai::kstruct {
public:
key_dsa_t(kaitai::kstream* p__io, ssh_public_key_t* p__parent = nullptr, ssh_public_key_t* p__root = nullptr);
private:
void _read();
void _clean_up();
public:
~key_dsa_t();
private:
std::unique_ptr<bignum2_t> m_dsa_p;
std::unique_ptr<bignum2_t> m_dsa_q;
std::unique_ptr<bignum2_t> m_dsa_g;
std::unique_ptr<bignum2_t> m_dsa_pub_key;
ssh_public_key_t* m__root;
ssh_public_key_t* m__parent;
public:
bignum2_t* dsa_p() const { return m_dsa_p.get(); }
bignum2_t* dsa_q() const { return m_dsa_q.get(); }
bignum2_t* dsa_g() const { return m_dsa_g.get(); }
bignum2_t* dsa_pub_key() const { return m_dsa_pub_key.get(); }
ssh_public_key_t* _root() const { return m__root; }
ssh_public_key_t* _parent() const { return m__parent; }
};
/**
* Elliptic curve dump format used by ssh. In OpenSSH code, the following
* routines are used to read/write it:
*
* * sshbuf_get_ec
* * get_ec
* \sa https://github.com/openssh/openssh-portable/blob/b4d4eda6/sshbuf-getput-crypto.c#L90
* https://github.com/openssh/openssh-portable/blob/b4d4eda6/sshbuf-getput-crypto.c#L76
* Source
*/
class elliptic_curve_t : public kaitai::kstruct {
public:
elliptic_curve_t(kaitai::kstream* p__io, ssh_public_key_t::key_ecdsa_t* p__parent = nullptr, ssh_public_key_t* p__root = nullptr);
private:
void _read();
void _clean_up();
public:
~elliptic_curve_t();
private:
uint32_t m_len;
std::string m_body;
ssh_public_key_t* m__root;
ssh_public_key_t::key_ecdsa_t* m__parent;
public:
uint32_t len() const { return m_len; }
std::string body() const { return m_body; }
ssh_public_key_t* _root() const { return m__root; }
ssh_public_key_t::key_ecdsa_t* _parent() const { return m__parent; }
};
/**
* Big integers serialization format used by ssh, v2. In the code, the following
* routines are used to read/write it:
*
* * sshbuf_get_bignum2
* * sshbuf_get_bignum2_bytes_direct
* * sshbuf_put_bignum2
* * sshbuf_get_bignum2_bytes_direct
* \sa https://github.com/openssh/openssh-portable/blob/b4d4eda6/sshbuf-getput-crypto.c#L35
* https://github.com/openssh/openssh-portable/blob/b4d4eda6/sshbuf-getput-basic.c#L431
* Source
*/
class bignum2_t : public kaitai::kstruct {
public:
bignum2_t(kaitai::kstream* p__io, kaitai::kstruct* p__parent = nullptr, ssh_public_key_t* p__root = nullptr);
private:
void _read();
void _clean_up();
public:
~bignum2_t();
private:
bool f_length_in_bits;
int32_t m_length_in_bits;
public:
/**
* Length of big integer in bits. In OpenSSH sources, this corresponds to
* `BN_num_bits` function.
*/
int32_t length_in_bits();
private:
uint32_t m_len;
std::string m_body;
ssh_public_key_t* m__root;
kaitai::kstruct* m__parent;
public:
uint32_t len() const { return m_len; }
std::string body() const { return m_body; }
ssh_public_key_t* _root() const { return m__root; }
kaitai::kstruct* _parent() const { return m__parent; }
};
private:
std::unique_ptr<cstring_t> m_key_name;
std::unique_ptr<kaitai::kstruct> m_body;
bool n_body;
public:
bool _is_null_body() { body(); return n_body; };
private:
ssh_public_key_t* m__root;
kaitai::kstruct* m__parent;
public:
cstring_t* key_name() const { return m_key_name.get(); }
kaitai::kstruct* body() const { return m_body.get(); }
ssh_public_key_t* _root() const { return m__root; }
kaitai::kstruct* _parent() const { return m__parent; }
};
// This is a generated file! Please edit source .ksy file and use kaitai-struct-compiler to rebuild
#include "ssh_public_key.h"
ssh_public_key_t::ssh_public_key_t(kaitai::kstream* p__io, kaitai::kstruct* p__parent, ssh_public_key_t* p__root) : kaitai::kstruct(p__io) {
m__parent = p__parent;
m__root = this;
m_key_name = nullptr;
_read();
}
void ssh_public_key_t::_read() {
m_key_name = std::unique_ptr<cstring_t>(new cstring_t(m__io, this, m__root));
n_body = true;
{
std::string on = key_name()->value();
if (on == std::string("ssh-rsa")) {
n_body = false;
m_body = std::unique_ptr<key_rsa_t>(new key_rsa_t(m__io, this, m__root));
}
else if (on == std::string("ecdsa-sha2-nistp256")) {
n_body = false;
m_body = std::unique_ptr<key_ecdsa_t>(new key_ecdsa_t(m__io, this, m__root));
}
else if (on == std::string("ssh-ed25519")) {
n_body = false;
m_body = std::unique_ptr<key_ed25519_t>(new key_ed25519_t(m__io, this, m__root));
}
else if (on == std::string("ssh-dss")) {
n_body = false;
m_body = std::unique_ptr<key_dsa_t>(new key_dsa_t(m__io, this, m__root));
}
}
}
ssh_public_key_t::~ssh_public_key_t() {
_clean_up();
}
void ssh_public_key_t::_clean_up() {
if (!n_body) {
}
}
ssh_public_key_t::key_rsa_t::key_rsa_t(kaitai::kstream* p__io, ssh_public_key_t* p__parent, ssh_public_key_t* p__root) : kaitai::kstruct(p__io) {
m__parent = p__parent;
m__root = p__root;
m_rsa_e = nullptr;
m_rsa_n = nullptr;
f_key_length = false;
_read();
}
void ssh_public_key_t::key_rsa_t::_read() {
m_rsa_e = std::unique_ptr<bignum2_t>(new bignum2_t(m__io, this, m__root));
m_rsa_n = std::unique_ptr<bignum2_t>(new bignum2_t(m__io, this, m__root));
}
ssh_public_key_t::key_rsa_t::~key_rsa_t() {
_clean_up();
}
void ssh_public_key_t::key_rsa_t::_clean_up() {
}
int32_t ssh_public_key_t::key_rsa_t::key_length() {
if (f_key_length)
return m_key_length;
m_key_length = rsa_n()->length_in_bits();
f_key_length = true;
return m_key_length;
}
ssh_public_key_t::key_ed25519_t::key_ed25519_t(kaitai::kstream* p__io, ssh_public_key_t* p__parent, ssh_public_key_t* p__root) : kaitai::kstruct(p__io) {
m__parent = p__parent;
m__root = p__root;
_read();
}
void ssh_public_key_t::key_ed25519_t::_read() {
m_len_pk = m__io->read_u4be();
m_pk = m__io->read_bytes(len_pk());
}
ssh_public_key_t::key_ed25519_t::~key_ed25519_t() {
_clean_up();
}
void ssh_public_key_t::key_ed25519_t::_clean_up() {
}
ssh_public_key_t::key_ecdsa_t::key_ecdsa_t(kaitai::kstream* p__io, ssh_public_key_t* p__parent, ssh_public_key_t* p__root) : kaitai::kstruct(p__io) {
m__parent = p__parent;
m__root = p__root;
m_curve_name = nullptr;
m_ec = nullptr;
_read();
}
void ssh_public_key_t::key_ecdsa_t::_read() {
m_curve_name = std::unique_ptr<cstring_t>(new cstring_t(m__io, this, m__root));
m_ec = std::unique_ptr<elliptic_curve_t>(new elliptic_curve_t(m__io, this, m__root));
}
ssh_public_key_t::key_ecdsa_t::~key_ecdsa_t() {
_clean_up();
}
void ssh_public_key_t::key_ecdsa_t::_clean_up() {
}
ssh_public_key_t::cstring_t::cstring_t(kaitai::kstream* p__io, kaitai::kstruct* p__parent, ssh_public_key_t* p__root) : kaitai::kstruct(p__io) {
m__parent = p__parent;
m__root = p__root;
_read();
}
void ssh_public_key_t::cstring_t::_read() {
m_len = m__io->read_u4be();
m_value = kaitai::kstream::bytes_to_str(m__io->read_bytes(len()), std::string("ASCII"));
}
ssh_public_key_t::cstring_t::~cstring_t() {
_clean_up();
}
void ssh_public_key_t::cstring_t::_clean_up() {
}
ssh_public_key_t::key_dsa_t::key_dsa_t(kaitai::kstream* p__io, ssh_public_key_t* p__parent, ssh_public_key_t* p__root) : kaitai::kstruct(p__io) {
m__parent = p__parent;
m__root = p__root;
m_dsa_p = nullptr;
m_dsa_q = nullptr;
m_dsa_g = nullptr;
m_dsa_pub_key = nullptr;
_read();
}
void ssh_public_key_t::key_dsa_t::_read() {
m_dsa_p = std::unique_ptr<bignum2_t>(new bignum2_t(m__io, this, m__root));
m_dsa_q = std::unique_ptr<bignum2_t>(new bignum2_t(m__io, this, m__root));
m_dsa_g = std::unique_ptr<bignum2_t>(new bignum2_t(m__io, this, m__root));
m_dsa_pub_key = std::unique_ptr<bignum2_t>(new bignum2_t(m__io, this, m__root));
}
ssh_public_key_t::key_dsa_t::~key_dsa_t() {
_clean_up();
}
void ssh_public_key_t::key_dsa_t::_clean_up() {
}
ssh_public_key_t::elliptic_curve_t::elliptic_curve_t(kaitai::kstream* p__io, ssh_public_key_t::key_ecdsa_t* p__parent, ssh_public_key_t* p__root) : kaitai::kstruct(p__io) {
m__parent = p__parent;
m__root = p__root;
_read();
}
void ssh_public_key_t::elliptic_curve_t::_read() {
m_len = m__io->read_u4be();
m_body = m__io->read_bytes(len());
}
ssh_public_key_t::elliptic_curve_t::~elliptic_curve_t() {
_clean_up();
}
void ssh_public_key_t::elliptic_curve_t::_clean_up() {
}
ssh_public_key_t::bignum2_t::bignum2_t(kaitai::kstream* p__io, kaitai::kstruct* p__parent, ssh_public_key_t* p__root) : kaitai::kstruct(p__io) {
m__parent = p__parent;
m__root = p__root;
f_length_in_bits = false;
_read();
}
void ssh_public_key_t::bignum2_t::_read() {
m_len = m__io->read_u4be();
m_body = m__io->read_bytes(len());
}
ssh_public_key_t::bignum2_t::~bignum2_t() {
_clean_up();
}
void ssh_public_key_t::bignum2_t::_clean_up() {
}
int32_t ssh_public_key_t::bignum2_t::length_in_bits() {
if (f_length_in_bits)
return m_length_in_bits;
m_length_in_bits = ((len() - 1) * 8);
f_length_in_bits = true;
return m_length_in_bits;
}