From 9bea6256b0bbff7208fce2a424312046340ad331 Mon Sep 17 00:00:00 2001
From: andig <cpuidle@gmx.de>
Date: Sun, 19 Dec 2021 18:50:16 +0100
Subject: [PATCH] Create host key if not found (#8)

---
 breakglass.go | 41 +++++++++++++++++++++++++++++++++++++++--
 1 file changed, 39 insertions(+), 2 deletions(-)

diff --git a/breakglass.go b/breakglass.go
index b1e3be8..2d5f04a 100644
--- a/breakglass.go
+++ b/breakglass.go
@@ -5,6 +5,10 @@ package main
 import (
 	"bufio"
 	"bytes"
+	"crypto/rand"
+	"crypto/rsa"
+	"crypto/x509"
+	"encoding/pem"
 	"flag"
 	"fmt"
 	"io/ioutil"
@@ -68,6 +72,31 @@ func loadHostKey(path string) (ssh.Signer, error) {
 	return ssh.ParsePrivateKey(b)
 }
 
+func createHostKey(path string) (ssh.Signer, error) {
+	key, err := rsa.GenerateKey(rand.Reader, 1024)
+	if err != nil {
+		return nil, err
+	}
+
+	file, err := os.OpenFile(path, os.O_RDWR|os.O_CREATE, 0400)
+	if err == nil {
+		defer file.Close()
+
+		var pkcs8 []byte
+		if pkcs8, err = x509.MarshalPKCS8PrivateKey(key); err == nil {
+			err = pem.Encode(file, &pem.Block{
+				Type:  "PRIVATE KEY",
+				Bytes: pkcs8,
+			})
+		}
+	}
+	if err != nil {
+		log.Printf("could not save generated host key: %v", err)
+	}
+
+	return ssh.NewSignerFromKey(key)
+}
+
 func main() {
 	flag.Parse()
 	log.SetFlags(log.LstdFlags | log.Lshortfile)
@@ -94,10 +123,18 @@ func main() {
 
 	signer, err := loadHostKey(*hostKeyPath)
 	if err != nil {
+		// create host key
 		if os.IsNotExist(err) {
-			log.Printf("see https://github.com/gokrazy/breakglass#installation")
+			log.Println("host key not found, creating initial host key")
+			signer, err = createHostKey(*hostKeyPath)
+			if err != nil {
+				err = fmt.Errorf("could not create host key: %w", err)
+			}
+		}
+
+		if err != nil {
+			log.Fatal(err)
 		}
-		log.Fatal(err)
 	}
 	config.AddHostKey(signer)