Allow encrypted server private keys and ask for passphrase when key import fails

2024-06-19 11:35:01 +02:00 · 2024-06-19 11:35:01 +02:00 · fa9ee50336
commit fa9ee50336
parent 8193410226
2 changed files with 11 additions and 2 deletions
--- a/asserver.py
+++ b/asserver.py
@ -6,6 +6,7 @@
 import asyncio

 from argparse import ArgumentParser
+from getpass import getpass
 from pathlib import Path
 from sys import stdout
 from sys import stderr
@ -101,7 +102,14 @@ if __name__ == "__main__":
    config = yaml.safe_load(args.config.read_text())
    config_host = str(config["host"])
    config_port = int(config["port"])
-    config_private_key = asyncssh.import_private_key(args.pkey.read_text())
+    try:
+        config_private_key = asyncssh.import_private_key(args.pkey.read_text())
+    except asyncssh.public_key.KeyImportError as e:
+        e_str = str(e).lower()
+        if "passphrase" in e_str or "encyrpted" in e_str: # this is unstable af!
+            config_private_key = asyncssh.import_private_key(args.pkey.read_text(), passphrase=getpass("Private Key Passphrase: "))
+        else:
+            raise e
    for c in config["clients"]:
        config_clients[str(c)] = asyncssh.import_authorized_keys(str(config["clients"][c]))
    # read private key
--- a/requirements.txt
+++ b/requirements.txt
@ -1,2 +1,3 @@
-asyncssh
+asyncssh~=2.14.0
+bcrypt~=4.1.0
 PyYAML