使用 Bouncy Castle 将 RSA 公钥转换为 RFC 4716 公钥 [英] Converting an RSA Public Key into a RFC 4716 Public Key with Bouncy Castle
问题描述
我希望将 RSA 公钥转换为可以用作 SSH 公钥的东西.
I am looking to convert an RSA public key into something that I could use as an SSH public key.
目前我有 Bouncy Castle 为我生成一个公钥,如下所示:
Currently I have Bouncy Castle producing me a public key that looks like this:
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq1Y5300i8bN+cI2U3wJE
Kh3xG/.........jbuz+WB0vvG
P25UwCle2k5siVMwbImEYsr+Xt0dsMmGVB3/6MHAqrM3QQdQ8p2E5TyzL+JYa1FT
gwIDAQAB
-----END PUBLIC KEY-----
我希望它具有与此类似的 RFC 4716 格式:
I want it to have an RFC 4716 format similar to this:
ssh-rsa AAAAB3NzaC1yc2.......G1p2Ag3mZLFsks7RNHVLgMsGIAikQ==
到目前为止,我使用 Bouncy Castle 的代码如下所示:
My Code so far using Bouncy Castle looks like this:
var r = new Org.BouncyCastle.Crypto.Generators.RsaKeyPairGenerator();
r.Init(new KeyGenerationParameters(new SecureRandom(), 2048));
var keys = r.GenerateKeyPair();
var stringWriter = new StringWriter();
var pemWriter = new PemWriter(stringWriter);
pemWriter.WriteObject(keys.Private);
pemWriter.Writer.Flush();
stringWriter.Close();
PrivateKey = stringWriter.ToString();
stringWriter = new StringWriter();
pemWriter = new PemWriter(stringWriter);
pemWriter.WriteObject(keys.Public);
pemWriter.Writer.Flush();
stringWriter.Close();
PublicKey = stringWriter.ToString();
如何重新格式化和编码密钥以使其看起来像这样?
How do I reformat and encode the key to make it look like this?
有没有人用 Bouncy Castle 或类似工具创建过 SSH 公钥?
Has anyone created SSH public keys with Bouncy Castle or similar?
推荐答案
我在 BouncyCastle 中没有找到现成的功能.因此,解决方法是使用 PemReader 然后格式化结果.结果将作为 PublicSSH 属性提供:
I found no ready-to-use function for this in BouncyCastle. So, the workaround is to use PemReaderand then format the result. The result will be available as PublicSSH property:
using Org.BouncyCastle.Crypto;
using Org.BouncyCastle.Crypto.Generators;
using Org.BouncyCastle.Crypto.Parameters;
using Org.BouncyCastle.Math;
using Org.BouncyCastle.OpenSsl;
using Org.BouncyCastle.Security;
using System;
using System.IO;
using System.Text;
namespace Deploy4Me.Common.Utils
{
public class RSAKey
{
public string PublicPEM { get; set; }
public string PrivatePEM { get; set; }
public string PublicSSH { get; set; }
}
public static class RSA
{
public static RSAKey Generate()
{
try
{
RSAKey result = new RSAKey();
IAsymmetricCipherKeyPairGenerator gen;
KeyGenerationParameters param;
gen = new RsaKeyPairGenerator();
param = new RsaKeyGenerationParameters(
BigInteger.ValueOf(3L),
new SecureRandom(),
2048,
80
);
gen.Init(param);
AsymmetricCipherKeyPair pair = gen.GenerateKeyPair();
using(TextWriter textWriter = new StringWriter())
{
PemWriter wr = new PemWriter(textWriter);
wr.WriteObject(pair.Private);
wr.Writer.Flush();
result.PrivatePEM = textWriter.ToString();
}
using (TextWriter textWriter = new StringWriter())
{
PemWriter wr = new PemWriter(textWriter);
wr.WriteObject(pair.Public);
wr.Writer.Flush();
result.PublicPEM = textWriter.ToString();
}
using (StringReader sr = new StringReader(result.PublicPEM))
{
PemReader reader = new PemReader(sr);
RsaKeyParameters r = (RsaKeyParameters)reader.ReadObject();
byte[] sshrsa_bytes = Encoding.Default.GetBytes("ssh-rsa");
byte[] n = r.Modulus.ToByteArray();
byte[] e = r.Exponent.ToByteArray();
string buffer64;
using(MemoryStream ms = new MemoryStream()){
ms.Write(ToBytes(sshrsa_bytes.Length), 0, 4);
ms.Write(sshrsa_bytes, 0, sshrsa_bytes.Length);
ms.Write(ToBytes(e.Length), 0, 4);
ms.Write(e, 0, e.Length);
ms.Write(ToBytes(n.Length), 0, 4);
ms.Write(n, 0, n.Length);
ms.Flush();
buffer64 = Convert.ToBase64String(ms.ToArray());
}
result.PublicSSH = string.Format("ssh-rsa {0} generated-key", buffer64);
}
return result;
}
catch (Org.BouncyCastle.Crypto.CryptoException ex)
{
throw ex;
}
}
private static byte[] ToBytes(int i)
{
byte[] bts = BitConverter.GetBytes(i);
if (BitConverter.IsLittleEndian)
{
Array.Reverse(bts);
}
return bts;
}
}
}
这篇关于使用 Bouncy Castle 将 RSA 公钥转换为 RFC 4716 公钥的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
