Sovran_Systems/Sovran_SystemsOS
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

chore: serialize ssh bootstrap key repairs

Browse Source
This commit is contained in:
copilot-swe-agent[bot]
2026-06-24 22:16:05 +00:00
committed by GitHub
parent 439021f798
commit 31abf40722
1 changed files with 8 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
modules/core/ssh-bootstrap.nix
+8
View File
@@ -44,6 +44,14 @@ lib.mkIf userExists {
set -eu set -eu
PASSPHRASE=$(cat /var/lib/secrets/ssh-passphrase) PASSPHRASE=$(cat /var/lib/secrets/ssh-passphrase)
lock_dir="${keyPath}.lock"
if ! mkdir "$lock_dir"; then
echo "Factory SSH key setup is already running." >&2
exit 1
fi
trap 'rmdir "$lock_dir"' EXIT
generate_factory_key() { generate_factory_key() {
ssh-keygen -q -N "$PASSPHRASE" -t ed25519 -f "${keyPath}" ssh-keygen -q -N "$PASSPHRASE" -t ed25519 -f "${keyPath}"