coreos
diff --git a/‎.gitignore
Lines changed: 1 addition & 0 deletions b/‎.gitignore
Lines changed: 1 addition & 0 deletions
diff --git a/‎Cargo.lock
Lines changed: 204 additions & 0 deletions b/‎Cargo.lock
Lines changed: 204 additions & 0 deletions
diff --git a/‎Cargo.toml
Lines changed: 32 additions & 0 deletions b/‎Cargo.toml
Lines changed: 32 additions & 0 deletions
diff --git a/‎Makefile
Lines changed: 18 additions & 0 deletions b/‎Makefile
Lines changed: 18 additions & 0 deletions
diff --git a/‎conf/40-ssh-key-dir.conf
Lines changed: 7 additions & 0 deletions b/‎conf/40-ssh-key-dir.conf
Lines changed: 7 additions & 0 deletions
diff --git a/‎src/errors.rs
Lines changed: 21 additions & 0 deletions b/‎src/errors.rs
Lines changed: 21 additions & 0 deletions
@@ -0,0 +1 @@
+/target
@@ -0,0 +1,32 @@
+[package]
+name = "ssh-key-dir"
+repository = "https://github.com/coreos/ssh-key-dir"
+license = "Apache-2.0"
+edition = "2018"
+exclude = ["/.cci.jenkinsfile", "/.github", "/.gitignore", "/.travis.yml"]
+authors = [ "Benjamin Gilbert <[email protected]>" ]
+description = "AuthorizedKeysCommand wrapper to read ~/.ssh/authorized_keys.d"
+version = "0.0.1-alpha.0"
+
+[package.metadata.release]
+sign-commit = true
+disable-push = true
+disable-publish = true
+pre-release-commit-message = "cargo: ssh-key-dir release {{version}}"
+post-release-commit-message = "cargo: development version bump"
+tag-message = "ssh-key-dir v{{version}}"
+
+[[bin]]
+name = "ssh-key-dir"
+path = "src/main.rs"
+
+[profile.release]
+lto = true
+
+[dependencies]
+clap = { version = "2.33", default-features = false }
+error-chain = { version = "0.12", default-features = false }
+users = "0.10"
+
+[dev-dependencies]
+tempfile = "3"
@@ -0,0 +1,18 @@
+RELEASE ?= 0
+
+ifeq ($(RELEASE),1)
+	PROFILE ?= release
+	CARGO_ARGS = --release
+else
+	PROFILE ?= debug
+	CARGO_ARGS =
+endif
+
+.PHONY: all
+all:
+	cargo build ${CARGO_ARGS}
+
+.PHONY: install
+install: all
+	install -D -t ${DESTDIR}/usr/libexec target/${PROFILE}/ssh-key-dir
+	install -D -m 644 -t ${DESTDIR}/etc/ssh/sshd_config.d conf/40-ssh-key-dir.conf
@@ -0,0 +1,7 @@
+# sshd_config drop-in for /etc/ssh/sshd_config.d
+
+# Use ssh-key-dir to read all SSH keys from ~/.ssh/authorized_keys.d
+AuthorizedKeysCommand /usr/libexec/ssh-key-dir %u
+
+# ssh-key-dir needs to be able to seteuid to the target user
+AuthorizedKeysCommandUser root
@@ -0,0 +1,21 @@
+// Copyright 2020 CoreOS, Inc.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+use error_chain::error_chain;
+
+error_chain! {
+    foreign_links {
+        Io(std::io::Error);
+    }
+}