decrypt the private key with the passed in byte-array so that the private key is no longer stored encrypted. Can be followed up with setting a new passphrase to re-encrypt. Returns true if the decryption succeeded.

zero out the memory holding the private key passphrase so subsequent attacks on stale memory are thwarted

Generate a public/private SSH key pair. key-type should be :dsa, :rsa, :ecdsa, :ed25519 or :ed448. key-size is the number of bits and defaults to 2048.

return the key finger print as a string.

returns the bit length of the key

returns a byte-array of the raw public key data.

Sign the passed in data with the private key, using algorithm if it is passed aswell

returns true if the private key is encrypted with a passphrase

Load the key pair from a file. Pass both private and public filenames in to load from those files. If public key filename is omitted, the private key filename with “.pub” appended is used

Load the key pair from a byte array. Pass both private and public keys either as byte arrays or as strings. Half a keypair can be loaded to perform some operations. You may pass in nil for one of the key portions to only load the public or private portion.

Set the passphrase on the private key to the string passphrase

write the private key to a file filename. Optionally pass in a byte array passphrase to be used as a passphrase.

write the public key to file filename with the attached comment string.