On Thu, Nov 20, 2014 at 12:16:41PM -0700, Philip Prindeville wrote:
> I'm also looking for a function to generate a fingerprint (either MD5 or
> SHA-1 digest)
> over a public key DER string.
C or command-line? On the command-line:
$ pkey_digest() {
openssl x509 -in "$1" -noout -pub
c
> keys known to the client. (I.e., the client says, "give me all of the
> certs you know that are for one of these public keys," and the server
> responds with those certs.)
>
> In order to keep the request size small, I'd like to include public
> key fingerp
ll, I'd like to include public
key fingerprints rather than full public keys in the request. Is there
a standard way to generate a fingerprint for a public key included in
X.509 and/or PKIX certificates? Or should I just roll my own?
(We're using 2048-bit RSA keys, BTW, but the ideal solutio
Hi list,
I need to know how to calculate the fingerprint for public/private RSA/DSA keys. (4
possibilities).
Right now, for both public and private keys, I get the same fingerprint (which I think
is wrong). I
think I'm missing some fields needed for private keys, which ones? i.e., Will the
c
>put_bignum2(pKey->pkey.rsa->n);
>
> The result is then the MD5 digest on the blob...
>
Depends on what you mean by "fingerprint": there isn't a standard for public
and private key fingerprints.
Does you want the public key have to have the same fingerprint as
->q);
> > blob->put_bignum2(pKey->pkey.dsa->g);
> > blob->put_bignum2(pKey->pkey.dsa->pub_key);
> > case RSA:
> > blob->put_cstring("ssh-rsa");
> > blob->put_bignum2(pKey->pkey.rsa->e);
> > blob->put
