Last active
August 14, 2022 04:06
-
-
Save StevenMaude/f054064ede8c9e781ed8 to your computer and use it in GitHub Desktop.
Generate SHA256 fingerprint from a public key
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/python | |
| # coding=utf-8 | |
| # sha256frompubkey.py: Displays SHA256 fingerprint of public key in Python 2/3. | |
| # Modified by Steven Maude from | |
| # https://github.com/joyent/python-manta/blob/4de7445277c0971c7ff43ef246018d055ef21d20/manta/auth.py | |
| # MIT licence. | |
| # Usage: obtain a public key using ssh-keyscan <host> > key.pub | |
| # then sha256frompubkey.py `cut -f3 -d " " key.pub` | |
| import base64 | |
| import binascii | |
| import hashlib | |
| import re | |
| import sys | |
| def sha256_fingerprint_from_pub_key(data): | |
| data = data.strip() | |
| # accept either base64 encoded data or full pub key file, | |
| # same as `fingerprint_from_ssh_pub_key | |
| if (re.search(r'^ssh-(?:rsa|dss) ', data)): | |
| data = data.split(None, 2)[1] | |
| # Python 2/3 hack. May be a better solution but this works. | |
| try: | |
| data = bytes(data, 'ascii') | |
| except TypeError: | |
| data = bytes(data) | |
| digest = hashlib.sha256(binascii.a2b_base64(data)).digest() | |
| encoded = base64.b64encode(digest).rstrip(b'=') # ssh-keygen strips this | |
| return "SHA256:" + encoded.decode('utf-8') | |
| def main(): | |
| print(sha256_fingerprint_from_pub_key(sys.argv[1])) | |
| if __name__ == '__main__': | |
| main() |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Could well be that my key i tried with is a ed25519.pub rather than a more typical rsa.