git.delta.rocks / jrsonnet / refs/commits / 459a8464f4ff

difftreelog

fix secret generator should create $out themself

Yaroslav Bolyukin2024-05-13parent: #0920f04.patch.diff
in: trunk

1 file changed

modifiedlib/fleetLib.nixdiffbeforeafterboth
46    mkSecretGenerator,46    mkSecretGenerator,
47  }:47  }:
48    mkSecretGenerator {48    mkSecretGenerator {
49      script = ''49      script = ''
50        ${coreutils}/bin/tr -dc 'A-Za-z0-9!?%=' < /dev/random \50        mkdir $out
51
52        ${coreutils}/bin/tr -dc 'A-Za-z0-9!?%=' < /dev/random \
51          | ${coreutils}/bin/head -c ${toString size} \53          | ${coreutils}/bin/head -c ${toString size} \
52          | ${encrypt} > $out/secret54          | ${encrypt} > $out/secret
53      '';55      '';
54    };56    };
5557
56  mkRsa = {size ? 4096}: {58  mkRsa = {size ? 4096}: {
59    mkSecretGenerator,61    mkSecretGenerator,
60  }:62  }:
61    mkSecretGenerator {63    mkSecretGenerator {
62      script = ''64      script = ''
63        ${openssl}/bin/openssl genrsa -out rsa_private.key ${toString size}65        mkdir $out
66
67        ${openssl}/bin/openssl genrsa -out rsa_private.key ${toString size}
64        ${openssl}/bin/openssl rsa -in rsa_private.key -pubout -out rsa_public.key68        ${openssl}/bin/openssl rsa -in rsa_private.key -pubout -out rsa_public.key
6569
66        sudo cat rsa_private.key | ${encrypt} > $out/secret70        sudo cat rsa_private.key | ${encrypt} > $out/secret
67        sudo cat rsa_public.key > $out/public71        sudo cat rsa_public.key > $out/public
68      '';72      '';
69    };73    };
70}74}
7175