ED25519 Key Support #39 (#248)

OpenSSH Key and ED25519 support #39 Added _libssh2_explicit_zero() to explicitly zero sensitive data in memory #120 * ED25519 Key file support - Requires OpenSSL 1.1.1 or later * OpenSSH Key format reading support - Supports RSA/DSA/ECDSA/ED25519 types * New string buffer reading functions - These add build-in bounds checking and convenance methods. Used for OpenSSL PEM file reading. * Added new tests for OpenSSH formatted Keys
2025-11-21 14:00:51 +03:00 · 2018-08-02 14:00:25 -07:00
parent 62b825c8af
commit 0309229259
35 changed files with 4368 additions and 285 deletions
--- a/src/crypto.h
+++ b/src/crypto.h
@@ -58,6 +58,10 @@
 #include "mbedtls.h"
 #endif

+#define LIBSSH2_ED25519_KEY_LEN 32
+#define LIBSSH2_ED25519_PRIVATE_KEY_LEN 64
+#define LIBSSH2_ED25519_SIG_LEN 64
+
 #if LIBSSH2_RSA
 int _libssh2_rsa_new(libssh2_rsa_ctx ** rsa,
                     const unsigned char *edata,
@@ -132,10 +136,6 @@ _libssh2_ecdsa_new_private(libssh2_ecdsa_ctx ** ec_ctx,
                           LIBSSH2_SESSION * session,
                           const char *filename, unsigned const char *passphrase);

-int _libssh2_ecdsa_new_openssh_private(libssh2_ecdsa_ctx ** dsa,
-                                       LIBSSH2_SESSION * session,
-                                       const char *filename,
-                                       unsigned const char *passphrase);
 int
 _libssh2_ecdsa_verify(libssh2_ecdsa_ctx * ctx,
                      const unsigned char *r, size_t r_len,
@@ -169,6 +169,38 @@ _libssh2_ecdsa_curve_type_from_name(const char *name, libssh2_curve_type *out_ty

 #endif /* LIBSSH2_ECDSA */

+#if LIBSSH2_ED25519
+
+int
+_libssh2_curve25519_new(libssh2_ed25519_ctx **ctx, uint8_t **out_public_key,
+                        uint8_t **out_private_key);
+
+int
+_libssh2_curve25519_gen_k(_libssh2_bn **k, uint8_t private_key[LIBSSH2_ED25519_KEY_LEN],
+                          uint8_t server_public_key[LIBSSH2_ED25519_KEY_LEN]);
+
+int
+_libssh2_ed25519_verify(libssh2_ed25519_ctx *ctx, const uint8_t *s,
+                        size_t s_len, const uint8_t *m, size_t m_len);
+
+int
+_libssh2_ed25519_new_private(libssh2_ed25519_ctx **ec_ctx,
+                            LIBSSH2_SESSION *session,
+                            const char *filename, const uint8_t *passphrase);
+int
+_libssh2_ed25519_sign(libssh2_ed25519_ctx *ctx, LIBSSH2_SESSION *session,
+                      uint8_t **out_sig, size_t *out_sig_len,
+                      const uint8_t *message, size_t message_len);
+
+int
+_libssh2_ed25519_new_private_frommemory(libssh2_ed25519_ctx **ed_ctx,
+                                        LIBSSH2_SESSION *session,
+                                        const char *filedata, size_t filedata_len,
+                                        unsigned const char *passphrase);
+
+#endif /* LIBSSH2_ED25519 */
+
+
 int _libssh2_cipher_init(_libssh2_cipher_ctx * h,
                         _libssh2_cipher_type(algo),
                         unsigned char *iv,
@@ -185,6 +217,7 @@ int _libssh2_pub_priv_keyfile(LIBSSH2_SESSION *session,
                              size_t *pubkeydata_len,
                              const char *privatekey,
                              const char *passphrase);
+
 int _libssh2_pub_priv_keyfilememory(LIBSSH2_SESSION *session,
                                    unsigned char **method,
                                    size_t *method_len,
@@ -194,4 +227,4 @@ int _libssh2_pub_priv_keyfilememory(LIBSSH2_SESSION *session,
                                    size_t privatekeydata_len,
                                    const char *passphrase);

-#endif
+#endif