packer-cn/common/ssh/key.go

package ssh

import (
	"encoding/pem"
	"fmt"
	"io/ioutil"
	"os"

	"golang.org/x/crypto/ssh"
)

// FileSigner returns an ssh.Signer for a key file.
func FileSigner(path string) (ssh.Signer, error) {
	f, err := os.Open(path)
	if err != nil {
		return nil, err
	}
	defer f.Close()

	keyBytes, err := ioutil.ReadAll(f)
	if err != nil {
		return nil, err
	}

	// We parse the private key on our own first so that we can
	// show a nicer error if the private key has a password.
	block, _ := pem.Decode(keyBytes)
	if block == nil {
		return nil, fmt.Errorf(
			"Failed to read key '%s': no key found", path)
	}
	if block.Headers["Proc-Type"] == "4,ENCRYPTED" {
		return nil, fmt.Errorf(
			"Failed to read key '%s': password protected keys are\n"+
				"not supported. Please decrypt the key prior to use.", path)
	}

	signer, err := ssh.ParsePrivateKey(keyBytes)
	if err != nil {
		return nil, fmt.Errorf("Error setting up SSH config: %s", err)
	}

	return signer, nil
}
builder/*: extract key path to ssh.Signer 2014-09-03 23:23:39 -04:00			`package ssh`

			`import (`
common/ssh: error if encrypted key is used 2014-09-03 23:25:31 -04:00			`"encoding/pem"`
builder/*: extract key path to ssh.Signer 2014-09-03 23:23:39 -04:00			`"fmt"`
			`"io/ioutil"`
			`"os"`

code.google.com/p/go.crypto/ssh -> golang.org/x/crypto/ssh code.google.com/p/go.crypto/ssh is now at golang.org/x/crypto/ssh as of https://code.google.com/p/go/source/detail?spec=svn.crypto.69e2a90ed92d03812364aeb947b7068dc42e561e&repo=crypto&r=8fec09c61d5d66f460d227fd1df3473d7e015bc6 Using the code.google.com import redirects properly, but runs into issues if you try to use a subpackage of `ssh`, e.g. `agent` which refers to golang.org/x/crypto/ssh causing conflicts if your types expect code.google.com/p/go.crypto/ssh. This is a precursor to a PR for #1066. 2015-04-04 01:30:13 -04:00			`"golang.org/x/crypto/ssh"`
builder/*: extract key path to ssh.Signer 2014-09-03 23:23:39 -04:00			`)`

			`// FileSigner returns an ssh.Signer for a key file.`
			`func FileSigner(path string) (ssh.Signer, error) {`
			`f, err := os.Open(path)`
			`if err != nil {`
			`return nil, err`
			`}`
			`defer f.Close()`

			`keyBytes, err := ioutil.ReadAll(f)`
			`if err != nil {`
			`return nil, err`
			`}`

common/ssh: error if encrypted key is used 2014-09-03 23:25:31 -04:00			`// We parse the private key on our own first so that we can`
			`// show a nicer error if the private key has a password.`
			`block, _ := pem.Decode(keyBytes)`
			`if block == nil {`
			`return nil, fmt.Errorf(`
			`"Failed to read key '%s': no key found", path)`
			`}`
			`if block.Headers["Proc-Type"] == "4,ENCRYPTED" {`
			`return nil, fmt.Errorf(`
			`"Failed to read key '%s': password protected keys are\n"+`
			`"not supported. Please decrypt the key prior to use.", path)`
			`}`

builder/*: extract key path to ssh.Signer 2014-09-03 23:23:39 -04:00			`signer, err := ssh.ParsePrivateKey(keyBytes)`
			`if err != nil {`
			`return nil, fmt.Errorf("Error setting up SSH config: %s", err)`
			`}`

			`return signer, nil`
			`}`