Open kallioli opened 7 months ago
Hello, the RSA backend implementation has the encrypt function in python cryptography https://github.com/pyca/cryptography/blob/main/src/rust/src/backend/rsa.rs#L446, whereas the Ed25519 does not https://github.com/pyca/cryptography/blob/main/src/rust/src/backend/ed25519.rs#L120.
More investigation is required to see how to implement this in a safe way. From the literature, the Ed25519 keys are used primarly for signing, not for encryption/decryption.
One way would be similar to this https://stackoverflow.com/questions/65684414/how-to-use-ssh-keygen-ed25519-keys-for-encryption-in-python.
@kallioli can you please provide the broader context for the feature and a decryption workflow that you are already using to make sure the Python implementation is compatible for encryption?
Thank you, Adrian Vladu
I am having the same issue using ECDSA with a curve P384
Hello,
When attempting to encrypt a user password with an Ed25519 SSH public key, we encountered the following error in the startup log:
I believe the problem stems from the cryptography library used to encrypt passwords (in cloudbaseinit/utils/crypt.py), which does not support encryption methods for elliptic key formats (like Ed25519).
Are there any plans to add support for these formats in the future?
Thank you.
Do you plan in future adding support for theses format ?