Package org.apache.sshd.common.config.keys.writer.openssh

Class OpenSSHKeyPairResourceWriter

java.lang.Object

org.apache.sshd.common.config.keys.writer.openssh.OpenSSHKeyPairResourceWriter

All Implemented Interfaces:

KeyPairResourceWriter<OpenSSHKeyEncryptionContext>

public class OpenSSHKeyPairResourceWriter
extends Object
implements KeyPairResourceWriter<OpenSSHKeyEncryptionContext>

A KeyPairResourceWriter for writing keys in the modern OpenSSH format, using the OpenBSD bcrypt KDF for passphrase-protected encrypted private keys.

Nested Class Summary

Nested Classes

Modifier and Type	Class	Description
static class	OpenSSHKeyPairResourceWriter.KeyEncryptor	A key encryptor for modern-style OpenSSH private keys using the bcrypt KDF.

Field Summary

Fields

Modifier and Type	Field	Description
static String	DASHES
static OpenSSHKeyPairResourceWriter	INSTANCE
static int	LINE_LENGTH

Constructor Summary

Constructors

Constructor	Description
OpenSSHKeyPairResourceWriter()

Method Summary

Modifier and Type	Method	Description
static OpenSSHKeyEncryptionContext	determineEncryption(OpenSSHKeyEncryptionContext options)
static byte[]	encodePrivateKey(KeyPair key, String keyType, int blockSize, String comment)
static byte[]	encodePublicKey(PublicKey key, String keyType)
static String	firstLine(String text)
static void	write(OutputStream out, byte[] bytes, int lineLength)
static void	write(OutputStream out, String s)
void	writePrivateKey(KeyPair key, String comment, OpenSSHKeyEncryptionContext options, OutputStream out)	Writes a serialization of a private key from a given KeyPair to a given OutputStream.
void	writePublicKey(PublicKey key, String comment, OutputStream out)	Writes a serialization of a PublicKey to a given OutputStream.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface org.apache.sshd.common.config.keys.writer.KeyPairResourceWriter

writePublicKey

Field Detail

DASHES

public static final String DASHES

See Also:

Constant Field Values

LINE_LENGTH

public static final int LINE_LENGTH

See Also:

Constant Field Values

INSTANCE

public static final OpenSSHKeyPairResourceWriter INSTANCE

Constructor Detail

OpenSSHKeyPairResourceWriter

public OpenSSHKeyPairResourceWriter()

Method Detail

writePrivateKey

public void writePrivateKey(KeyPair key,
                            String comment,
                            OpenSSHKeyEncryptionContext options,
                            OutputStream out)
                     throws IOException,
                            GeneralSecurityException

Description copied from interface: KeyPairResourceWriter

Writes a serialization of a private key from a given KeyPair to a given OutputStream.

Specified by:

writePrivateKey in interface KeyPairResourceWriter<OpenSSHKeyEncryptionContext>

Parameters:

key - to write the private key of

comment - to write with the private key

options - for writing the key; may be null if no encryption is wanted. The caller is responsible for clearing the options when no longer needed. If the passphrase obtained from the context is null or an empty/blank string (length zero or containing only whitespace), the key is written unencrypted.

out - The OutputStream to write to - recommend using a SecureByteArrayOutputStream in order to reduce sensitive data exposure in memory

Throws:

IOException - if the key cannot be written

GeneralSecurityException - if the key is inconsistent or unknown, or the encryption specified cannot be applied

determineEncryption

public static OpenSSHKeyEncryptionContext determineEncryption(OpenSSHKeyEncryptionContext options)

encodePrivateKey

public static byte[] encodePrivateKey(KeyPair key,
                                      String keyType,
                                      int blockSize,
                                      String comment)
                               throws IOException,
                                      GeneralSecurityException

Throws:

IOException

GeneralSecurityException

encodePublicKey

public static byte[] encodePublicKey(PublicKey key,
                                     String keyType)
                              throws IOException,
                                     GeneralSecurityException

Throws:

IOException

GeneralSecurityException

write

public static void write(OutputStream out,
                         byte[] bytes,
                         int lineLength)
                  throws IOException

Throws:

IOException

writePublicKey

public void writePublicKey(PublicKey key,
                           String comment,
                           OutputStream out)
                    throws IOException,
                           GeneralSecurityException

Writes a serialization of a PublicKey to a given OutputStream. Writes the public key in the single-line OpenSSH format "key-type pub-key comment" without terminating line ending. If the comment has multiple lines, only the first line is written.

Specified by:

writePublicKey in interface KeyPairResourceWriter<OpenSSHKeyEncryptionContext>

Parameters:

key - to write

comment - to write with the key

out - The OutputStream to write to - recommend using a SecureByteArrayOutputStream in order to reduce sensitive data exposure in memory

Throws:

IOException - if the key cannot be written

GeneralSecurityException - if the key is unknown

firstLine

public static String firstLine(String text)

write

public static void write(OutputStream out,
                         String s)
                  throws IOException

Throws:

IOException