summaryrefslogtreecommitdiff
path: root/tools
diff options
context:
space:
mode:
authorJan Dittberner <jandd@cacert.org>2016-05-16 14:41:02 +0200
committerJan Dittberner <jandd@cacert.org>2016-05-16 14:41:02 +0200
commit83532ae56d94e16d68e94b3f7793956735d4881f (patch)
treee7a24586675eddba4aafe5c17361a1e9785586ae /tools
parent246d28b181c69091386369a04ec1797902991520 (diff)
downloadcacert-infradocs-83532ae56d94e16d68e94b3f7793956735d4881f.tar.gz
cacert-infradocs-83532ae56d94e16d68e94b3f7793956735d4881f.tar.xz
cacert-infradocs-83532ae56d94e16d68e94b3f7793956735d4881f.zip
Add tool to generate sshkeys directives
Diffstat (limited to 'tools')
-rwxr-xr-xtools/ssh_host_keys.py37
1 files changed, 37 insertions, 0 deletions
diff --git a/tools/ssh_host_keys.py b/tools/ssh_host_keys.py
new file mode 100755
index 0000000..df0c45a
--- /dev/null
+++ b/tools/ssh_host_keys.py
@@ -0,0 +1,37 @@
+#!/usr/bin/env python
+
+from glob import glob
+import argparse
+import os.path
+import subprocess
+
+
+SUPPORTED_SSH_KEYTYPES = ('RSA', 'DSA', 'ECDSA', 'ED25519')
+
+
+if __name__ == '__main__':
+ parser = argparse.ArgumentParser(
+ description=(
+ 'Convert a set of ssh host keys to the syntax expected by the '
+ 'sshkeys directive of the CAcert infrastructur documentation'))
+ parser.add_argument(
+ 'root', metavar='ROOT', type=str, help='root directory'
+ )
+ args = parser.parse_args()
+
+ keys = {}
+ for host_key in glob(os.path.join(
+ args.root, 'etc/ssh', 'ssh_host_*key.pub')
+ ):
+ fp = subprocess.check_output(
+ ['ssh-keygen', '-l', '-f', host_key]).strip().split()
+ keys[fp[3][1:-1]] = fp[1]
+
+ maxlen = max([len(key) for key in keys.keys() if key in SUPPORTED_SSH_KEYTYPES])
+
+ print ".. sshkeys::"
+ for typ, key in [
+ (typ, keys[typ]) for typ in SUPPORTED_SSH_KEYTYPES
+ if typ in keys
+ ]:
+ print " :%s:%s %s" % (typ, ' ' * (maxlen - len(typ)), key)