2023-07-26 21:18:24 +08:00
|
|
|
#!/usr/bin/env bash
|
2023-04-21 12:37:05 +08:00
|
|
|
set -e
|
|
|
|
THIS_DIR=$( cd "$( dirname "${BASH_SOURCE[0]:-${(%):-%x}}" )" && pwd )
|
|
|
|
export DFS_COLOR=1
|
|
|
|
source "$THIS_DIR/common.sh"
|
|
|
|
|
|
|
|
|
2023-11-06 19:13:22 +08:00
|
|
|
SO_PATHS=(
|
|
|
|
"/usr/lib/x86_64-linux-gnu/opensc-pkcs11.so" # ubuntu 22.04
|
|
|
|
"/run/current-system/sw/lib/opensc-pkcs11.so" # nixos 23.05
|
|
|
|
"/Library/OpenSC/lib/opensc-pkcs11.so" # macos 13.4
|
|
|
|
)
|
|
|
|
|
2023-04-21 12:37:05 +08:00
|
|
|
find_so_file()
|
|
|
|
{
|
|
|
|
local SO_FILE
|
|
|
|
for SO_FILE in ${SO_PATHS[*]}; do
|
|
|
|
if [[ -f "$SO_FILE" ]]; then
|
|
|
|
echo "$SO_FILE"
|
|
|
|
return
|
|
|
|
fi
|
|
|
|
done
|
|
|
|
}
|
|
|
|
|
|
|
|
create_agent()
|
|
|
|
{
|
2023-11-06 19:13:22 +08:00
|
|
|
local IFS=","
|
[dev] refactor riot; improve tmux and vim; more plugins; more aliases (#43)
* riot: remove unknown domain warn
* install.sh: --no-ssh -> --no-auth-info
* doll: --restart=unless-stopped
* zshrc: alias cps and mvs
* riot: proxy -> ssh
* zshrc: not alias rm to trash
* (trial) riot devel: separate preset to config dir riot.d
* riot: support extra options and extra -o options
* (experimental) riot config in a single file
* riot config: add nasp remote and null domain
* gitconf: pull.ff = only
* fix ci
* riot: dynamic port forwarding
* riot: only one domain func will be exec
* to-install: update lemonbench
* to-install: alist
* [exp] riot inferred ssh: ping ping6
* sagt: fix nixos
* riot config: domain 42
* ubuntu.sh: DEBIAN_FRONTEND=noninteractive
* zshrc: ping -n
* zshrc: alias ping -n
* riot-config: jumpserver from sir0 to ssh.beardic.cn
* zshrc: alias ping before checking os type
* frigg: support api4.beardic.cn
* fix(install.sh): crontab fails on a new server
* fix(riot-conf): nasp.ob.ac.cn -> nasp.fit
* fix(install.sh): install crontab (exp)
* feat(test.zsh): test crontab
* fix(riot): secure control master
* fix(ci): riot control master
* fix(riot): not mkdir if dry-run
* feat(vimrc): set shiftwidth=4
* feat(ci): sync tmux-yank
* feat(tmux): set-clipboard on and mouse on (experimental)
* feat(zshrc): alias ping6
* build(ci): hub mirror 1.3->1.4
* fix(zshrc): tmux on msys; feat(common): better perf getting os type and linux dist
* fix(common.sh): get_os_type and get_linux_dist
* feat(zshrc): add plugin {magic-enter,per-directory-history,pip,podman,python,rsync,systemd,timer}
* feat(zshrc): journalctl alias
* feat(vimrc): tab=2 for c,cpp,nix,yaml
* build(ci): checkout v3 -> v4
---------
Co-authored-by: xiongdian.me <xiongdian.me@bytedance.com>
2024-05-05 12:02:55 +08:00
|
|
|
ssh-agent -P "${SO_PATHS[*]},/nix/store/*"
|
2023-04-21 12:37:05 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
kill_agent()
|
|
|
|
{
|
|
|
|
if pgrep -x ssh-agent > /dev/null; then
|
|
|
|
fmt_note "killing existing agent"
|
|
|
|
pkill -9 -x ssh-agent
|
|
|
|
fi
|
|
|
|
}
|
|
|
|
|
|
|
|
add_piv()
|
|
|
|
{
|
|
|
|
local SO_FILE=$(find_so_file)
|
|
|
|
if [[ -n "$SO_FILE" ]]; then
|
|
|
|
echo ssh-add -s \"$SO_FILE\"
|
|
|
|
else
|
|
|
|
fmt_error "opensc-pkcs11.so not found"
|
|
|
|
fi
|
|
|
|
list
|
|
|
|
}
|
|
|
|
|
|
|
|
list()
|
|
|
|
{
|
|
|
|
echo echo "available keys:"
|
|
|
|
echo ssh-add -l
|
|
|
|
}
|
|
|
|
|
|
|
|
reset()
|
|
|
|
{
|
|
|
|
kill_agent
|
|
|
|
all
|
|
|
|
}
|
|
|
|
|
|
|
|
all()
|
|
|
|
{
|
|
|
|
local agent_file="/tmp/piv-agent-$(whoami)"
|
|
|
|
if [[ -f $agent_file ]]; then
|
|
|
|
source $agent_file > /dev/null
|
|
|
|
else
|
|
|
|
touch $agent_file
|
|
|
|
chmod 600 $agent_file
|
|
|
|
fi
|
|
|
|
if ! ps -p "$SSH_AGENT_PID" 1>/dev/null 2>&1; then
|
|
|
|
kill_agent
|
|
|
|
fmt_note "launching a new agent"
|
|
|
|
create_agent | tee $agent_file
|
|
|
|
else
|
|
|
|
fmt_note "using existing agent: $SSH_AGENT_PID"
|
|
|
|
cat $agent_file
|
|
|
|
fi
|
|
|
|
}
|
|
|
|
|
|
|
|
route()
|
|
|
|
{
|
2023-05-30 13:43:25 +08:00
|
|
|
os_type="$(get_os_type)"
|
|
|
|
if [[ "$os_type" == "msys" || "$os_type" == "cygwin" ]]; then
|
|
|
|
fmt_fatal "unsupported platform: $os_type. you may use WinCryptSSHAgent."
|
|
|
|
fi
|
2023-04-21 12:37:05 +08:00
|
|
|
if [[ $# -eq 0 ]]; then
|
|
|
|
all
|
|
|
|
return
|
|
|
|
fi
|
|
|
|
case $1 in
|
|
|
|
kill)
|
|
|
|
kill_agent
|
|
|
|
;;
|
|
|
|
piv)
|
|
|
|
add_piv
|
|
|
|
;;
|
|
|
|
reset)
|
|
|
|
reset
|
|
|
|
;;
|
|
|
|
list|ls)
|
|
|
|
list
|
|
|
|
;;
|
|
|
|
*)
|
|
|
|
fmt_error "unknown command: $1"
|
|
|
|
;;
|
|
|
|
esac
|
|
|
|
}
|
|
|
|
|
2023-07-26 21:18:24 +08:00
|
|
|
route "$@"
|