diff options
| author | Paul Kapp <paullkapp+radssh@gmail.com> | 2017-08-22 08:38:07 -0400 |
|---|---|---|
| committer | Paul Kapp <paullkapp+radssh@gmail.com> | 2017-08-22 08:38:07 -0400 |
| commit | 80c136790b732313e0dcae5a533ced6e9759bea2 (patch) | |
| tree | 64da4501454ee548fd045be7916b933a7c55f579 /paramiko/client.py | |
| parent | 0f26ff25a1cd47b3eaae412bedabbad9516549f4 (diff) | |
| download | paramiko-80c136790b732313e0dcae5a533ced6e9759bea2.tar.gz | |
Add certificate filenames to look_for_keys
Diffstat (limited to 'paramiko/client.py')
| -rw-r--r-- | paramiko/client.py | 20 |
1 files changed, 15 insertions, 5 deletions
diff --git a/paramiko/client.py b/paramiko/client.py index 936693fc..abfa4cc1 100644 --- a/paramiko/client.py +++ b/paramiko/client.py @@ -608,17 +608,27 @@ class SSHClient (ClosingContextManager): ) if os.path.isfile(full_path): keyfiles.append((keytype, full_path)) + if os.path.isfile(full_path + '-cert.pub'): + keyfiles.append((keytype, full_path + '-cert.pub')) if not look_for_keys: keyfiles = [] for pkey_class, filename in keyfiles: try: - key = pkey_class.from_private_key_file(filename, password) - self._log( - DEBUG, - 'Trying discovered key %s in %s' % ( - hexlify(key.get_fingerprint()), filename)) + if filename.endswith('-cert.pub'): + key = pkey_class.from_private_key_file(filename.rstrip('-cert.pub'), password) + key.load_certificate(pubkey_filename=filename) + self._log( + DEBUG, + 'Trying discovered certificate %s in %s' % ( + hexlify(key.get_fingerprint()), filename)) + else: + key = pkey_class.from_private_key_file(filename, password) + self._log( + DEBUG, + 'Trying discovered key %s in %s' % ( + hexlify(key.get_fingerprint()), filename)) # for 2-factor auth a successfully auth'd key will result # in ['password'] |