Crate rustica_keys

The rustica-keys crate provides types and methods for parsing OpenSSH public keys, and parsing then verifying SSH certificates.

The following public key types are supported.

• RSA
• ECDSA
• ED25519

The following OpenSSH certificate types are supported as well.

• ssh-rsa-cert-v01@openssh.com
• ecdsa-sha2-nistp256-cert-v01@openssh.com
• ecdsa-sha2-nistp384-cert-v01@openssh.com
• ecdsa-sha2-nistp512-cert-v01@openssh.com (Not yet)
• ssh-ed25519-cert-v01@openssh.com

The crate also provides functionality for provision key slots on Yubikeys to handle signing operations. This is provided in the optional yubikey submodule

Re-exports

• pub use ssh::Certificate;
• pub use ssh::PublicKey;

Modules

• ssh
  Functions or structs for dealing with SSH Certificates. Parsing, and creating certs happens here. This module is a heavily modified version of the sshkeys crate that adds certificate verification, and many other things to support that. The original licence for the code is in the source code provided
• utils
  Utility functions for dealing with SSH certificates, signatures or conversions