Code review edits

key-agent changes: tsh now ignores public keys loaded from the SSH key agent unless they are certificates. this fixes the problem of 'host auth' callback being called for 3rd party public keys in the SSH-agent (and tsh had no choice but to prompt user if he wanted to add thoses hosts to known_hosts file) tctl auth changes: `tctl auth` now outputs to stdout by default. If you set -o to a file, it will use that file instead. Getting rid of -o was not possible because it's still useful if --format is set to `dir` (OpenSSH compatible output). other changes: - added more detailed comments in a few places - restored error handling logic
2024-10-21 09:44:51 +00:00 · 2017-06-12 13:12:17 -07:00 · 2017-06-12 13:12:17 -07:00 · 63cef003d6
parent d046eaee20
commit 63cef003d6
2 changed files with 19 additions and 17 deletions
--- a/lib/client/keyagent.go
+++ b/lib/client/keyagent.go
@ -271,11 +271,14 @@ func (a *LocalKeyAgent) CheckHostSignature(host string, remote net.Addr, key ssh
 			return nil
 		}
 	}
-	// final step: lets ask user:
+	// final step: if we have not seen the host key/cert before, lets ask the user if
+	// he trusts it, and add to the known_hosts if he says "yes"
 	if err = hostPromptFunc(host, key); err != nil {
+		// he said "no"
 		a.noHosts[host] = true
 		return trace.Wrap(err)
 	}
+	// user said "yes"
 	err = a.keyStore.AddKnownHostKeys(host, []ssh.PublicKey{key})
 	if err != nil {
 		log.Warn(err)
@ -292,7 +295,7 @@ func (a *LocalKeyAgent) AddKey(host string, username string, key *Key) (*CertAut
 	// save it to disk (usually into ~/.tsh)
 	err := a.keyStore.AddKey(host, username, key)
 	if err != nil {
-
+		return nil, trace.Wrap(err)
 	}

 	// load key into the teleport agent and system agent
@ -337,19 +340,23 @@ func (a *LocalKeyAgent) DeleteKey(proxyHost string, username string) error {
 //    2. Itself (disk-based local agent)
 func (a *LocalKeyAgent) AuthMethods() (m []ssh.AuthMethod) {
 	// combine our certificates with external SSH agent's:
-	var certs []ssh.Signer
+	var signers []ssh.Signer
 	if ourCerts, _ := a.Signers(); ourCerts != nil {
-		certs = append(certs, ourCerts...)
+		signers = append(signers, ourCerts...)
 	}
 	if a.sshAgent != nil {
 		if sshAgentCerts, _ := a.sshAgent.Signers(); sshAgentCerts != nil {
-			certs = append(certs, sshAgentCerts...)
+			signers = append(signers, sshAgentCerts...)
 		}
 	}
 	// for every certificate create a new "auth method" and return them
-	m = make([]ssh.AuthMethod, len(certs))
-	for i := range certs {
-		m[i] = NewAuthMethodForCert(certs[i])
+	m = make([]ssh.AuthMethod, 0)
+	for i := range signers {
+		// filter out non-certificates (like regular public SSH keys stored in the SSH agent):
+		_, ok := signers[i].PublicKey().(*ssh.Certificate)
+		if ok {
+			m = append(m, NewAuthMethodForCert(signers[i]))
+		}
 	}
 	return m
 }
--- a/tool/tctl/common/tctl.go
+++ b/tool/tctl/common/tctl.go
@ -763,17 +763,12 @@ func (a *AuthCommand) GenerateAndSignKeys(client *auth.TunClient) error {
 	// dump user identity into a single file:
 	//
 	case IdentityFormatFile:
-		if a.output == "" {
-			a.output = fmt.Sprintf("%s.pem", a.genUser)
-		}
 		var (
-			output  io.Writer
-			beQuiet bool
+			output  io.Writer = os.Stdout
+			beQuiet bool      = true
 		)
-		if a.output == "-" {
-			output = os.Stdout
-			beQuiet = true
-		} else {
+		if a.output != "" {
+			beQuiet = false
 			f, err := os.OpenFile(a.output, os.O_CREATE|os.O_WRONLY, 0600)
 			if err != nil {
 				return trace.Wrap(err)