To understand what we’re doing here, please check out our two foundation tutorials on RSA Encryption: > r = RSA.importKey(f.Hi! Let’s encrypt some data using an RSA Public Key Certificate in Python. You can download it from here: > f = open('key.pem','r') It does work in P圜rypto's latest version 2.7a1. So, my conclusion at this time is that keys generated by "openssl genpkey" are not supported by P圜rypto v 2.6.1. If lines.startswith(b('Proc-Type:4,ENCRYPTED')): RSA.py doesn't even try to decrypt the PEM if the "Proc-Type" is not found: # The encrypted PEM format " is used the "Proc-Type" is not present. " command, this string is present in PEM in clear, however when "opensl genpkey.
When key is generated using "openssl genrsa. RSA.py looks for the following in PEM file to determine what kind of encryption was applied to PEM: Proc-Type: 4,ENCRYPTED Hypothesis #2 - this is the author's case. I still want to keep it here as one possible reason of import failure, so other users are aware. > r=RSA.importKey(f.read(),passphrase='')Īfter receiving the PEM from the author, I've realized that Hypothesis #1 is not valid for his case. > r=RSA.importKey(f.read(),passphrase='foo')įile "/usr/local/lib/python2.7/dist-packages/Crypto/PublicKey/RSA.py", line 665, in importKeyįile "/usr/local/lib/python2.7/dist-packages/Crypto/PublicKey/RSA.py", line 588, in _importKeyDER To confirm that, I ran two quick tests below: > from Crypto.PublicKey import RSA If provided password is not correct, the format of generated DER representation will not be correct too and you would get an exception that you've provided. The way how import works for PEM keys encrypted with a password is that the PEM gets decrypted to DER and after that importKeyDER function is called. Importing the public key works fine, however it is not encrypted.Īfter looking to the source code, I think, I solved the mystery. Is it possible to generate an encrypted RSA key, store it in a file and later use it with P圜rypto? Is it possible to do it with OpenSSL? What formats are supported? ValueError: RSA key format is not supported Raise ValueError("RSA key format is not supported") R = RSA.importKey(f.read(), passphrase='some-pass')īut I am getting an exception: File "/usr/lib/python2.7/dist-packages/Crypto/PublicKey/RSA.py", line 665, in importKeyįile "/usr/lib/python2.7/dist-packages/Crypto/PublicKey/RSA.py", line 588, in _importKeyDER My Python code looks like: from Crypto.PublicKey import RSA The key then looks like: -BEGIN ENCRYPTED PRIVATE KEY. I am generating a key with OpenSSL, providing the password from stdin: openssl genpkey -algorithm RSA -out private-key.pem -outform PEM -pass stdin -des3 -pkeyopt rsa_keygen_bits:4096
0 kommentar(er)
