xref: /freebsd/usr.bin/ssh-copy-id/ssh-copy-id.sh (revision e0c4386e7e71d93b0edc0c8fa156263fc4a8b0b6)
1#!/bin/sh
2#-
3# SPDX-License-Identifier: BSD-2-Clause
4#
5# Copyright (c) 2012 Eitan Adler
6#
7# Redistribution and use in source and binary forms, with or without
8# modification, are permitted provided that the following conditions
9# are met:
10# 1. Redistributions of source code must retain the above copyright
11#    notice, this list of conditions and the following disclaimer
12#    in this position and unchanged.
13# 2. Redistributions in binary form must reproduce the above copyright
14#    notice, this list of conditions and the following disclaimer in the
15#    documentation and/or other materials provided with the distribution.
16#
17# THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
18# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
19# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
20# ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
21# FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
22# DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
23# OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
24# HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
25# LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
26# OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
27# SUCH DAMAGE.
28#
29
30usage() {
31	echo "usage: ssh-copy-id [-lv] [-i keyfile] [-o option] [-p port] [user@]hostname" >&2
32	exit 1
33}
34
35sendkey() {
36	local h="$1"
37	local k="$2"
38	printf "%s\n" "$k" | ssh $port -S none $options "$user$h" /bin/sh -c \'' \
39		set -e; \
40		umask 077; \
41		keyfile=$HOME/.ssh/authorized_keys ; \
42		mkdir -p -- "$HOME/.ssh/" ; \
43		while read alg key comment ; do \
44			[ -n "$key" ] || continue; \
45			if ! grep -sqwF "$key" "$keyfile"; then \
46				printf "$alg $key $comment\n" >> "$keyfile" ; \
47			fi ; \
48		done ; \
49		if [ -x /sbin/restorecon ]; then \
50			/sbin/restorecon -F "$HOME/.ssh/" "$keyfile" >/dev/null 2>&1 || true ; \
51		fi \
52	'\'
53}
54
55agentKeys() {
56	keys="$(ssh-add -L | grep -v 'The agent has no identities.')$nl$keys"
57}
58
59keys=""
60host=""
61hasarg=""
62user=""
63port=""
64nl="
65"
66options=""
67
68IFS=$nl
69
70while getopts 'i:lo:p:v' arg; do
71	case $arg in
72	i)
73		hasarg="x"
74		if [ -r "${OPTARG}.pub" ]; then
75			keys="$(cat -- "${OPTARG}.pub")$nl$keys"
76		elif [ -r "$OPTARG" ]; then
77			keys="$(cat -- "$OPTARG")$nl$keys"
78		else
79			echo "File $OPTARG not found" >&2
80			exit 1
81		fi
82		;;
83	l)
84		hasarg="x"
85		agentKeys
86		;;
87	p)
88		port=-p$nl$OPTARG
89		;;
90	o)
91		options=$options$nl-o$nl$OPTARG
92		;;
93	v)
94		options="$options$nl-v"
95		;;
96	*)
97		usage
98		;;
99	esac
100done >&2
101
102shift $((OPTIND-1))
103
104if [ -z "$hasarg" ]; then
105	agentKeys
106fi
107if [ -z "$keys" ] || [ "$keys" = "$nl" ]; then
108	echo "no keys found" >&2
109	exit 1
110fi
111if [ "$#" -eq 0 ]; then
112	usage
113fi
114
115for host in "$@"; do
116	sendkey "$host" "$keys"
117done
118