|
|
@@ -1,7 +1,8 @@
|
|
|
-// import * as fs from 'fs/promises'
|
|
|
+import * as fs from 'fs/promises'
|
|
|
+import * as crypto from 'crypto'
|
|
|
import * as tmp from 'tmp-promise'
|
|
|
import { Injectable } from '@angular/core'
|
|
|
-import { ConfigService, HostAppService, Platform, PlatformService } from 'tabby-core'
|
|
|
+import { ConfigService, FileProvidersService, HostAppService, Platform, PlatformService } from 'tabby-core'
|
|
|
import { SSHSession } from '../session/ssh'
|
|
|
import { SSHProfile } from '../api'
|
|
|
import { PasswordStorageService } from './passwordStorage.service'
|
|
|
@@ -15,6 +16,7 @@ export class SSHService {
|
|
|
private config: ConfigService,
|
|
|
hostApp: HostAppService,
|
|
|
private platform: PlatformService,
|
|
|
+ private fileProviders: FileProvidersService,
|
|
|
) {
|
|
|
if (hostApp.platform === Platform.Windows) {
|
|
|
this.detectedWinSCPPath = platform.getWinSCPPath()
|
|
|
@@ -47,14 +49,35 @@ export class SSHService {
|
|
|
const args = [await this.getWinSCPURI(session.profile, undefined, session.authUsername ?? undefined)]
|
|
|
|
|
|
let tmpFile: tmp.FileResult|null = null
|
|
|
- if (session.activePrivateKey) {
|
|
|
- tmpFile = await tmp.file()
|
|
|
- // await fs.writeFile(tmpFile.path, session.activePrivateKey)
|
|
|
- const winSCPcom = path.slice(0, -3) + 'com'
|
|
|
- await this.platform.exec(winSCPcom, ['/keygen', tmpFile.path, `/output=${tmpFile.path}`])
|
|
|
- args.push(`/privatekey=${tmpFile.path}`)
|
|
|
+ try {
|
|
|
+ if (session.activePrivateKey && session.profile.options.privateKeys && session.profile.options.privateKeys.length > 0) {
|
|
|
+ tmpFile = await tmp.file()
|
|
|
+ let passphrase: string|null = null
|
|
|
+ for (const pk of session.profile.options.privateKeys) {
|
|
|
+ let privateKeyContent: string|null = null
|
|
|
+ const buffer = await this.fileProviders.retrieveFile(pk)
|
|
|
+ privateKeyContent = buffer.toString()
|
|
|
+ await fs.writeFile(tmpFile.path, privateKeyContent)
|
|
|
+ const keyHash = crypto.createHash('sha512').update(privateKeyContent).digest('hex')
|
|
|
+ // need to pass an default passphrase, otherwise it might get stuck at the passphrase input
|
|
|
+ passphrase = await this.passwordStorage.loadPrivateKeyPassword(keyHash) ?? 'tabby'
|
|
|
+ const winSCPcom = path.slice(0, -3) + 'com'
|
|
|
+ try {
|
|
|
+ await this.platform.exec(winSCPcom, ['/keygen', tmpFile.path, '-o', tmpFile.path, '--old-passphrase', passphrase])
|
|
|
+ } catch (error) {
|
|
|
+ console.warn('Could not convert private key ', error)
|
|
|
+ continue
|
|
|
+ }
|
|
|
+ break
|
|
|
+ }
|
|
|
+ args.push(`/privatekey=${tmpFile.path}`)
|
|
|
+ if (passphrase != null) {
|
|
|
+ args.push(`/passphrase=${passphrase}`)
|
|
|
+ }
|
|
|
+ }
|
|
|
+ await this.platform.exec(path, args)
|
|
|
+ } finally {
|
|
|
+ tmpFile?.cleanup()
|
|
|
}
|
|
|
- await this.platform.exec(path, args)
|
|
|
- tmpFile?.cleanup()
|
|
|
}
|
|
|
}
|
OpaqueGlass