ssh .pem_将SSH密钥从PEM解码为BASE64，再将HEX解码为ASN.1，以十进制数开头

最新推荐文章于 2024-06-02 10:00:15 发布

cunfuxiao7305

最新推荐文章于 2024-06-02 10:00:15 发布

阅读量1.3k

点赞数 1

文章标签：可视化 java python ssh printf

原文链接：https://www.hanselman.com/blog/decoding-an-ssh-key-from-pem-to-base64-to-hex-to-asn1-to-prime-decimal-numbers

版权

ssh .pem

I'm reading a new chapter of The Imposter's Handbook: Season 2 that Rob and I are working on. He's digging into the internals of what's exactly in your SSH Key.

我正在阅读《冒名顶替者手册：第二季》的新篇章，我和罗伯正在共同努力。他正在深入研究SSH密钥中的内容。

I generated a key with no password:

我生成了没有密码的密钥：

ssh-keygen -t rsa -C scott@myemail.com

Inside the generated file is this text, that we've all seen before but few have cracked open.

生成的文件内是这段文本，我们之前都看过，但很少有人打开。

The private key is an ASN.1 (Abstract Syntax Notation One) encoded data structure. It's a funky format but it's basically a packed format with the ability for nested trees that can hold booleans, integers, etc.

私有密钥是ASN.1 (抽象语法表示法1 )编码的数据结构。这是一种时髦的格式，但基本上是一种打包格式，具有嵌套树的功能，可以容纳布尔值，整数等。

However, ASN.1 is just the binary packed "payload." It's not the "container." For example, there are envelopes and there are letters inside them. The envelope is the PEM (Privacy Enhanced Mail) format. Such things start with ----- BEGIN SOMETHING ----- and end with ----- END SOMETHING ------. If you're familiar with BASE64, your spidey sense may tell you that this is a BASE64 encoded file. Not everything that's BASE64 turns into a friendly ASCII string. This turns into a bunch of bytes you can view in HEX.

但是，ASN.1只是二进制打包的“有效负载”。它不是“容器”。例如，里面有信封，里面有字母。信封是PEM(隐私增强邮件)格式。这样的事情以-----开始某物-----结束，并且以-----结束某物------结尾。如果您熟悉BASE64，您的间谍意识可能会告诉您这是BASE64编码的文件。并非所有的BASE64都会变成友好的ASCII字符串。这会变成一堆字节，您可以在十六进制中查看。

We can first decode the PEM file into HEX. Yes, I know there's lots of ways to do this stuff at the command line, but I like showing and teaching using some of the many encoding/decoding websites and utilities there are out there. I also love using https://cryptii.com/ for these things as you can build a visual pipeline.

我们可以先将PEM文件解码为HEX 。是的，我知道可以在命令行中执行许多操作，但是我喜欢使用其中存在的许多编码/解码网站和实用程序中的一些进行显示和教学。我也喜欢使用https://cryptii.com/来做这些事情，因为您可以建立可视化管道。

308204A40201000282010100B5DF00B3CE6C3948E3923575DAE8
CC2199A1C9E81791C9866935A4DF5F6F401DFE7292215AED2606
47BC476F234729BD90B423D918DA3B501D4B1B0BCB8851D87CA7
63B97A0526C852B01A9BF682FDE57326683BAA35628CF2914E3E
DB746E5D60D65848488BF7CB7FF97571A097175CE118F3773959
C0A7CA816FE7C306E1319E1E2FF47285CAA5D1A502AB5052A6E9
DAC1BB582AD7206249741BD40C8403410D08B27E8C2B89CA040D
74B9C26657EA24EC310F9321A4D372A0031F9589E9FD10BBE8EC
FD0037BE4D9B55BD1623FA81FA0DBD45C3029285EDDBB51539F8
AF7A5E2F3CE3E74CB919C89F5987E84588BB38F87123870560E5
snip

This ASN.1 JavaScript decoder can take the HEX and parse it for you. Or you can that ASN.1 packed format at the *nix command line and see that there's nine big integers inside (I trimmed them for this blog).

此ASN.1 JavaScript解码器可以获取HEX并为您解析。或者，您可以在* nix命令行中使用ASN.1打包格式，然后查看里面有9个大整数(我在此博客中对其进行了修剪)。

openssl asn1parse -in notreal
    0:d=0  hl=4 l=1188 cons: SEQUENCE
    4:d=1  hl=2 l=   1 prim: INTEGER           :00
    7:d=1  hl=4 l= 257 prim: INTEGER           :B5DF00B3CE6C3948E3923575DAE8CC2199A1C9E81791C9866935A4DF5F6F401DFE7292215
  268:d=1  hl=2 l=   3 prim: INTEGER           :010001
  273:d=1  hl=4 l= 257 prim: INTEGER           :8195EB82324A9A667CFFE867991AD697FA4774FD920DA671C6F51A0CAE8B2E3C30D8A1967
  534:d=1  hl=3 l= 129 prim: INTEGER           :E22B40AC22007370E309E68A29C64EEF085B6937D8B808F74D2862EDEDCBC8CB18BEAAD48
  666:d=1  hl=3 l= 129 prim: INTEGER           :CDDC00D77FD6E9E7EE83AD95F1805076FAE3690D817C47ED4FA05B7872B5631C6174DEAA7
  798:d=1  hl=3 l= 128 prim: INTEGER           :747EECEFFD0F9866D43B3C497C5D0E3967679659D2C270B3D9456D37BADDD5CE6F2F7ED4B
  929:d=1  hl=3 l= 128 prim: INTEGER           :742961DC388A184144E8CEE9DE75AE72050E8FF80C0A0A38520745B648DC2BCA170030A97
 1060:d=1  hl=3 l= 129 prim: INTEGER           :997742BA4458617495BE121EFF68893C9BC0A1A38226E6F14E16B9FDF5EE072981790499E

Per the spec the format is this:

根据规范，格式为：

   An RSA private key shall have ASN.1 type RSAPrivateKey:

   RSAPrivateKey ::= SEQUENCE {
     version Version,
     modulus INTEGER, -- n
     publicExponent INTEGER, -- e
     privateExponent INTEGER, -- d
     prime1 INTEGER, -- p
     prime2 INTEGER, -- q
     exponent1 INTEGER, -- d mod (p-1)
     exponent2 INTEGER, -- d mod (q-1)
     coefficient INTEGER -- (inverse of q) mod p }

I found the description for how RSA works in this blog post very helpful as it uses small numbers as examples. The variable names here like p, q, and n are agreed upon and standard.

我发现此博客文章中有关RSA的工作原理的描述非常有用，因为它以较小的数字为例。此处的变量名(如p，q和n)是公认的标准变量。

The fields of type RSAPrivateKey have the following meanings:
        o    version is the version number, for compatibility
             with future revisions of this document. It shall
             be 0 for this version of the document.
        o    modulus is the modulus n.
        o    publicExponent is the public exponent e.
        o    privateExponent is the private exponent d.
        o    prime1 is the prime factor p of n.
        o    prime2 is the prime factor q of n.
        o    exponent1 is d mod (p-1).
        o    exponent2 is d mod (q-1).
        o    coefficient is the Chinese Remainder Theorem
             coefficient q-1 mod p.

Let's look at that first number q, the prime factor p of n. It's super long in Hexadecimal.

让我们看一下第一个数字q，n的素数p。十六进制超长。

747EECEFFD0F9866D43B3C497C5D0E3967679659D2C270B3D945
6D37BADDD5CE6F2F7ED4BC600A002C2FC11A4A42EBAFA1B3D354
52D1B33CFCF1A3978B29D1E7F8C7DFEE8888487D73795AB6D6D3
80EC99C7F077CCF956FECA5853416D8B16CBD89648526E941A65
2E1AE72CF0511425BCF1E9E540B0CA23655ABEFADAAD028B

That hexadecimal number converted to decimal is this long ass number. It's 308 digits long!

转换为十进制的十六进制数字就是这个长屁股数字。这是308位数字！

22959099950256034890559187556292927784453557983859951626187028542267181746291385208056952622270636003785108992159340113537813968453561739504619062411001131648757071588488220532539782545200321908111599592636973146194058056564924259042296638315976224316360033845852318938823607436658351875086984433074463158236223344828240703648004620467488645622229309082546037826549150096614213390716798147672946512459617730148266423496997160777227482475009932013242738610000405747911162773880928277363924192388244705316312909258695267385559719781821111399096063487484121831441128099512811105145553708218511125708027791532622990325823

It's hard work to prove this number is prime but there's a great Integer Factorization Calculator that actually uses WebAssembly and your own local CPU to check such things. Expect to way a long time, sometimes until the heat death of the universe. ;)

很难证明这个数字是素数，但是有一个很棒的整数分解计算器，它实际上使用WebAssembly和您自己的本地CPU来检查这些事情。期待很长一段时间，有时直到宇宙热死。 ;)

Rob and I are finding it really cool to dig just below the surface of common things we look at all the time. I have often opened a key file in a text file but never drawn a straight and complete line through decoding, unpacking, decoding, all the way to a math mathematical formula. I feel I'm filling up some major gaps in my knowledge!

罗伯和我发现挖掘一直在我们经常看到的普通事物的表面之下真的很酷。我经常在文本文件中打开密钥文件，但从未通过解码，解包，解码一直到数学数学公式来画一条直线。我觉得我正在填补我的一些主要知识空白！

Sponsor: Preview the latest JetBrains Rider with its built-in spell checking, initial Blazor support, partial C# 7.3 support, enhanced debugger, C# Interactive, and a redesigned Solution Explorer.

赞助商：预览最新的JetBrains Rider，包括其内置的拼写检查，Blazor初始支持，部分C＃7.3支持，增强的调试器，C＃Interactive和重新设计的解决方案资源管理器。

翻译自: https://www.hanselman.com/blog/decoding-an-ssh-key-from-pem-to-base64-to-hex-to-asn1-to-prime-decimal-numbers

ssh .pem

cunfuxiao7305

关注

1
点赞
踩
2

收藏

觉得还不错? 一键收藏
0
评论
ssh .pem_将SSH密钥从PEM解码为BASE64，再将HEX解码为ASN.1，以十进制数开头

ssh .pemI'm reading a new chapter of The Imposter's Handbook: Season 2 that Rob and I are working on. He's digging into the internals of what's exactly in your SSH Key.我正在阅读《冒名顶替者手册：第二季》的新篇章，我和罗伯正在共同...
复制链接

扫一扫