2010-12-16 16:22:24 +01:00
|
|
|
Puppet::Parser::Functions::newfunction(:ssh_keygen, :type => :rvalue, :doc =>
|
|
|
|
"Returns an array containing the ssh private and public (in this order) key
|
|
|
|
for a certain private key path.
|
|
|
|
It will generate the keypair if both do not exist. It will also generate
|
|
|
|
the directory hierarchy if required.
|
|
|
|
It accepts only fully qualified paths, everything else will fail.") do |args|
|
|
|
|
raise Puppet::ParseError, "Wrong number of arguments" unless args.to_a.length == 1
|
2010-12-16 17:33:04 +01:00
|
|
|
private_key_path = args.to_a[0]
|
2010-12-16 17:15:36 +01:00
|
|
|
raise Puppet::ParseError, "Only fully qualified paths are accepted (#{private_key_path})" unless private_key_path =~ /^\/.+/
|
2010-12-16 16:22:24 +01:00
|
|
|
public_key_path = "#{private_key_path}.pub"
|
|
|
|
raise Puppet::ParseError, "Either only the private or only the public key exists" if File.exists?(private_key_path) ^ File.exists?(public_key_path)
|
|
|
|
[private_key_path,public_key_path].each do |path|
|
|
|
|
raise Puppet::ParseError, "#{path} is a directory" if File.directory?(path)
|
|
|
|
end
|
|
|
|
|
|
|
|
dir = File.dirname(private_key_path)
|
2012-06-08 18:17:23 +02:00
|
|
|
unless File.directory?(dir)
|
|
|
|
require 'fileutils'
|
|
|
|
FileUtils.mkdir_p(dir, :mode => 0700)
|
|
|
|
end
|
2010-12-16 16:22:24 +01:00
|
|
|
unless [private_key_path,public_key_path].all?{|path| File.exists?(path) }
|
2014-12-18 17:50:32 +01:00
|
|
|
executor = (Facter.value(:puppetversion).to_i < 3) ? Puppet::Util : Puppet::Util::Execution
|
|
|
|
output = executor.execute(
|
2013-12-04 22:54:44 +01:00
|
|
|
['/usr/bin/ssh-keygen','-t', 'rsa', '-b', '4096',
|
2013-12-04 22:57:47 +01:00
|
|
|
'-f', private_key_path, '-P', '', '-q'])
|
2010-12-16 16:22:24 +01:00
|
|
|
raise Puppet::ParseError, "Something went wrong during key generation! Output: #{output}" unless output.empty?
|
|
|
|
end
|
|
|
|
[File.read(private_key_path),File.read(public_key_path)]
|
|
|
|
end
|
2014-12-18 17:50:32 +01:00
|
|
|
|