File: ssh-hostkeys

package info (click to toggle)
ssh-tools 1.5-1
  • links: PTS, VCS
  • area: main
  • in suites: buster
  • size: 136 kB
  • sloc: sh: 792; makefile: 8
file content (108 lines) | stat: -rwxr-xr-x 2,954 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
 
#!/usr/bin/env bash

#  +---------------------------------------------------------------------------------------------------+
#  | Title        : ssh-hostkeys                                                                       |
#  |                                                                                                   |
#  | Description  : Prints server host keys in several formats                                         |
#  |                                                                                                   |
#  | Author       : Sven Wick <sven.wick@gmx.de>                                                       |
#  | Contributors : Geert Stappers <https://github.com/stappersg>                                      |
#  | URL          : https://github.com/vaporup/ssh-tools                                               |
#  |                                                                                                   |
#  | Based On     : https://unix.stackexchange.com/questions/126908/get-ssh-server-key-fingerprint     |
#  +---------------------------------------------------------------------------------------------------+

#
# Usage/Help message
#

function usage() {

cat << EOF

    Usage: ${0##*/} [OPTIONS] hostname

    OPTIONS:
        -4             Use IPv4 only
        -6             Use IPv6 only
        -h             Show this message
        -T timeout     Time to wait for a response, in seconds
        -p port        Port to connect to on the remote host.

EOF

}

if [[ -z $1 || $1 == "--help" ]]; then
    usage
    exit 1
fi

#
# Command line Options
#

SSH_FLAGS=()

while getopts ":46hp:T:" opt; do
    case ${opt} in
        4 )
            SSH_FLAGS+=("-4")
        ;;
        6 )
            SSH_FLAGS+=("-6")
        ;;
        h )
            usage
            exit 1
        ;;
        p )
            [[ $OPTARG =~ ^[0-9]+$ ]] && SSH_FLAGS+=("-p") && SSH_FLAGS+=("$OPTARG")
        ;;
        T )
            SSH_FLAGS+=("-T") && SSH_FLAGS+=("$OPTARG")
        ;;
        \? )
            echo "Invalid option: $OPTARG" 1>&2
            usage
            exit 1
        ;;
    esac
done

shift $((OPTIND - 1))

remote_host=$1

the_hostkeys=$( mktemp /tmp/ssh-hostkeys.XXXXXX )
trap "rm -f $the_hostkeys" EXIT

ssh-keyscan "${SSH_FLAGS[@]}" $remote_host > $the_hostkeys 2>/dev/null

fingerprint_hashes=( md5 sha256 )

function get_fingerprints () {

  hash_type=$1

  ssh-keygen -E $hash_type -qlf $the_hostkeys | while IFS= read -r line; do

    key_data=( $(printf '%s\n' "$line") )
    key_size=${key_data[0]}
    key_hash=${key_data[1]}
    key_remote_host=${key_data[2]}
    key_type=${key_data[3]}
    key_hash_type="${key_hash%%:*}"
    key_hash_data="${key_hash#*:}"

    printf "%10s%6s%8s %s\n" $key_type $key_size $key_hash_type $key_hash_data

  done

}

for fingerprint_hash in ${fingerprint_hashes[@]}; do

  get_fingerprints $fingerprint_hash

done | sort