diff --git a/install/id_rsa b/install/id_rsa new file mode 100644 index 0000000000000000000000000000000000000000..a44035f9f1e93108f7782cd3ee2af74d2f8ee96a --- /dev/null +++ b/install/id_rsa @@ -0,0 +1,27 @@ +-----BEGIN RSA PRIVATE KEY----- +MIIEpAIBAAKCAQEAzdiy/Ow6ybF2XQDdc4fk3C5ZNCPCD48c68RG9gGqHZ04Ymxv +t8YzHcegSQlkUXgrHXVG2Q0NfdC1b0T8OzVDGX7GzrEzwSYSoZvnQ5M9M6jivOK9 +jpn0wxV2iBaJ3VRImdT5KbQ6VsNuYXpE1i2f0o3gjI/btYtC9e0rusEhuqjXwrQu +AlUhLPAddCb7RqGtp+siFyWAxwj4RIWvx3IpjraQ5+SDyL3BpvD+5GRnUZ3sJvCb +dVniccK01erMWxVA6CWg5Oiiss2nrFzZYOCB1OspQXAE9+WTtrV1WGrMV0++f3pN +zL1SbMRJFhNgPpDmfzO9S9xdJlfamBcgHF5N7wIDAQABAoIBAGguYcByivpjr8U4 +V9xODf2GE62431Him7+Tslp10zRzywK9YPmA/YP38d6lOzmkeSXKolXeLlLcG8e6 +AXKx7UjtCg+4TbpW250he7WOwq3vrvnsRAX1U5Scu0X7KkFzk98PlB+QUOpytN3u +9QH1S2tUVS6u7IMAfZ5cMAKwFrMSMtbO0KYTbb0rPsmO37vAnKuTTRvjGQnrjebL +8NcbYY83VIUBBNR182jinoaxk5Xfr+AqCQbYsYmMb+rq9CV9REG657kcXn5I4JGB +W+jV3023SEZveUDam7yeMz9IKBPwWhuwbVhcD7La6buigihezWa6p6xQZMcvg87d +Ao4vk2kCgYEA66Y5crnGioXFxyPjuUhyxPjOHCHhjp6913A9b2thFq8x6S15fefC +YBGWHJ6CelHwceaxQgBMNtHY4VS2J9KqzRZyb0hmRuHaa2+7Z9ie7vxZtwfp3j3N +nFhuE1MmZO+o15A65XE/mUPt/qxxMwbmGhk9R4LG96wyh0fJzOF4V/MCgYEA35+W +rs3eycXSVB2K1S3S998okG8R8PYBe+ZGM4I7EfkkmS9Pva40464dQoHGF6Myp4iu +molodmwaMQ1tm/Bzs1qpyiqNLrL8XexVJblcLTm/0vMRYSxWVsjneMMPA/EPkPKM +AFXMvX9p1v4gfekc+SqmKobqjYOPP32lob6JTRUCgYBT3Yi8h9ldG1bUFLXLDzmp +WFMiN/yqYVx2+/8hVDntdNRyhDik0oKe5iNidBdDqT3Fi7CyKKD3MZ/aMefSLGuV +KdP4PvAHcgHmEpHD15hYvX7AYRSef6hZaC9kuUcEzTZt4WrUlYVo6oAdDwoKev4R +c8IXXTeqlaI1+xqay/OkeQKBgQCtbU0lIFAp15t41Lh4/+LfjVgeO6WEZKVd+4Zy +KAu7sqbpjkGfb11hPgU/MPn6Fv0P5PbUrsAvJ0Ngy3M4PtDcRfHr8fgwQWtrQ//9 +E7Yi9OiJpyzRWdtTzteFVnFssyVJWnGtSN1SEWB59fgo7gMkUikwThXVzjPoH3+2 +4tgEyQKBgQCBufN15oxKd9DT4Rxar8lC5XgWSB4gJbY7Kr89jg7dPFWB63Z2zfga +UMJHaXbbINlJahYwDM8v0KT1mh5rKNhO2hetKCz9BBdkGhdRjXIrycHJsVMysXka +NwhAzY6Me5Ki6jWdLneWfjqv1zGSWb+Ux2ybRUFDlKtlEOYrKZn/bA== +-----END RSA PRIVATE KEY----- diff --git a/install/id_rsa.pub b/install/id_rsa.pub new file mode 100644 index 0000000000000000000000000000000000000000..61817d333148d9a523468bdc780458e6c54fef05 --- /dev/null +++ b/install/id_rsa.pub @@ -0,0 +1 @@ +ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDN2LL87DrJsXZdAN1zh+TcLlk0I8IPjxzrxEb2AaodnThibG+3xjMdx6BJCWRReCsddUbZDQ190LVvRPw7NUMZfsbOsTPBJhKhm+dDkz0zqOK84r2OmfTDFXaIFondVEiZ1PkptDpWw25hekTWLZ/SjeCMj9u1i0L17Su6wSG6qNfCtC4CVSEs8B10JvtGoa2n6yIXJYDHCPhEha/HcimOtpDn5IPIvcGm8P7kZGdRnewm8Jt1WeJxwrTV6sxbFUDoJaDk6KKyzaesXNlg4IHU6ylBcAT35ZO2tXVYasxXT75/ek3MvVJsxEkWE2A+kOZ/M71L3F0mV9qYFyAcXk3v stoller@boss.emulab.net diff --git a/install/installvars.pm.in b/install/installvars.pm.in index fa42ff0bac064b5f36546d6d73ccfbaba586c2c3..f29336fd13b1224705719beb3ca849908b386989 100644 --- a/install/installvars.pm.in +++ b/install/installvars.pm.in @@ -1,6 +1,6 @@ #!/usr/bin/perl -w # -# Copyright (c) 2003-2014 University of Utah and the Flux Group. +# Copyright (c) 2003-2015 University of Utah and the Flux Group. # # {{{EMULAB-LICENSE # @@ -335,7 +335,8 @@ $ROOT_AUTHKEY = "/root/.ssh/authorized_keys"; $ROOT_DSA_PRIVKEY = "/root/.ssh/id_dsa"; $ROOT_DSA_PUBKEY = "$ROOT_DSA_PRIVKEY.pub"; -$INIT_PRIVKEY = "$main::TOP_SRCDIR/install/identity"; +$INIT_PRIVKEY = "$main::TOP_SRCDIR/install/id_rsa"; +$INIT_PUBKEY = "$main::TOP_SRCDIR/install/id_rsa.pub"; $CACERT = "$TBROOT/etc/emulab.pem"; $EMULAB_PEM = "emulab.pem"; $CLIENT_PEM = "client.pem"; diff --git a/install/phases/boss/ssh b/install/phases/boss/ssh index ffed86ab704953869a7a12b008796eafe3a9dac9..bb78732a9c3aa439ff2ad7173747277172502698 100755 --- a/install/phases/boss/ssh +++ b/install/phases/boss/ssh @@ -77,9 +77,11 @@ sub Install($$$) }; } Phase "keycopy", "Copy root ssh keys to ops", sub { - if (! ExecQuiet("$SSH -o 'BatchMode=yes' root\@${USERNODE} pwd")) { + if (! ExecQuiet("$SSH -o 'BatchMode=yes' -i $ROOT_PRIVKEY ". + " root\@${USERNODE} pwd")) { PhaseSkip("Key already copied"); } else { + # ssh will complain about mode if we do not do this. ExecQuietFatal("chmod 400 $INIT_PRIVKEY"); if ($ELABINELAB) { ExecQuietFatal("$SCP_INIT -i $INIT_PRIVKEY ". @@ -109,7 +111,8 @@ sub Install($$$) if ($BOSSNODE eq $FSNODE) { PhaseSkip("FS node is boss node"); } - if (! ExecQuiet("$SSH -o 'BatchMode=yes' root\@${FSNODE} pwd")) { + if (! ExecQuiet("$SSH -o 'BatchMode=yes' -i $ROOT_PRIVKEY ". + "root\@${FSNODE} pwd")) { PhaseSkip("Key already copied"); } else { if ($ELABINELAB) { diff --git a/install/phases/ops/ssh b/install/phases/ops/ssh index 6e88aa4f1ccb37c9ac49785932bd25d85b641f58..de9d1f12c7108e00d95a0cb0f081c53eaebb70cc 100755 --- a/install/phases/ops/ssh +++ b/install/phases/ops/ssh @@ -5,8 +5,6 @@ use strict; use libinstall; use installvars; -my $IDENTPUB = "$TOP_SRCDIR/install/identity.pub"; - sub Install($$$) { my ($server, $isupdate, $impotent) = @_; @@ -55,8 +53,8 @@ sub Install($$$) }; Phase "authkeys", "Adding stub identity to root authorized_keys", sub { DoneIfEdited($AUTHKEYS); - my $ident = `cat $IDENTPUB`; - PhaseFail("Could not read $IDENTPUB") + my $ident = `cat $INIT_PUBKEY`; + PhaseFail("Could not read $INIT_PUBKEY") if ($?); chomp($ident); if (! -e $AUTHKEYS) {