diff options
| author | Gregor Kleen <gkleen@yggdrasil.li> | 2022-02-12 13:48:41 +0100 |
|---|---|---|
| committer | Gregor Kleen <gkleen@yggdrasil.li> | 2022-02-12 13:48:41 +0100 |
| commit | ff32ceaae000fbc44eb54bd01fe4b7bd77995b37 (patch) | |
| tree | fb313ee2003da177704ba10c3da9bb7414f22935 /system-profiles/openssh/ca | |
| parent | a7c15eb497d95f04e36ab90d84c37cdde71c8e0e (diff) | |
| download | nixos-ff32ceaae000fbc44eb54bd01fe4b7bd77995b37.tar nixos-ff32ceaae000fbc44eb54bd01fe4b7bd77995b37.tar.gz nixos-ff32ceaae000fbc44eb54bd01fe4b7bd77995b37.tar.bz2 nixos-ff32ceaae000fbc44eb54bd01fe4b7bd77995b37.tar.xz nixos-ff32ceaae000fbc44eb54bd01fe4b7bd77995b37.zip | |
openssh: certificate authority
Diffstat (limited to 'system-profiles/openssh/ca')
| -rw-r--r-- | system-profiles/openssh/ca/.gitignore | 1 | ||||
| -rw-r--r-- | system-profiles/openssh/ca/ca.pub | 1 | ||||
| -rw-r--r-- | system-profiles/openssh/ca/krl.bin | bin | 0 -> 174 bytes | |||
| -rwxr-xr-x | system-profiles/openssh/ca/krl.bin.gup | 6 | ||||
| -rw-r--r-- | system-profiles/openssh/ca/krl.contents.gup | 7 | ||||
| -rw-r--r-- | system-profiles/openssh/ca/krl/low-serial | 1 | ||||
| -rw-r--r-- | system-profiles/openssh/ca/krl/test-idents | 1 |
7 files changed, 17 insertions, 0 deletions
diff --git a/system-profiles/openssh/ca/.gitignore b/system-profiles/openssh/ca/.gitignore new file mode 100644 index 00000000..d6fbf779 --- /dev/null +++ b/system-profiles/openssh/ca/.gitignore | |||
| @@ -0,0 +1 @@ | |||
| krl.contents \ No newline at end of file | |||
diff --git a/system-profiles/openssh/ca/ca.pub b/system-profiles/openssh/ca/ca.pub new file mode 100644 index 00000000..7ca56060 --- /dev/null +++ b/system-profiles/openssh/ca/ca.pub | |||
| @@ -0,0 +1 @@ | |||
| ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIC1t7HamptQ49VXtSZyRsaOuja5In1N0U9Ybdiu6ztzi ca.yggdrasil | |||
diff --git a/system-profiles/openssh/ca/krl.bin b/system-profiles/openssh/ca/krl.bin new file mode 100644 index 00000000..3f04c994 --- /dev/null +++ b/system-profiles/openssh/ca/krl.bin | |||
| Binary files differ | |||
diff --git a/system-profiles/openssh/ca/krl.bin.gup b/system-profiles/openssh/ca/krl.bin.gup new file mode 100755 index 00000000..30f3b9ba --- /dev/null +++ b/system-profiles/openssh/ca/krl.bin.gup | |||
| @@ -0,0 +1,6 @@ | |||
| 1 | #!/usr/bin/env zsh | ||
| 2 | set -eu | ||
| 3 | |||
| 4 | gup -u krl.contents | ||
| 5 | |||
| 6 | xargs -0 -- ssh-keygen -h -Us ca.pub -k -z $(tai64dec) -f $1 <krl.contents \ No newline at end of file | ||
diff --git a/system-profiles/openssh/ca/krl.contents.gup b/system-profiles/openssh/ca/krl.contents.gup new file mode 100644 index 00000000..7cc0426f --- /dev/null +++ b/system-profiles/openssh/ca/krl.contents.gup | |||
| @@ -0,0 +1,7 @@ | |||
| 1 | #!/usr/bin/env zsh | ||
| 2 | set -eu | ||
| 3 | |||
| 4 | find krl -type f -print0 > $1 | ||
| 5 | |||
| 6 | gup --always | ||
| 7 | xargs -0 -- b2sum <$1 | gup --contents | ||
diff --git a/system-profiles/openssh/ca/krl/low-serial b/system-profiles/openssh/ca/krl/low-serial new file mode 100644 index 00000000..17b4924e --- /dev/null +++ b/system-profiles/openssh/ca/krl/low-serial | |||
| @@ -0,0 +1 @@ | |||
| serial: 1-4611686020072056302 | |||
diff --git a/system-profiles/openssh/ca/krl/test-idents b/system-profiles/openssh/ca/krl/test-idents new file mode 100644 index 00000000..cf847c77 --- /dev/null +++ b/system-profiles/openssh/ca/krl/test-idents | |||
| @@ -0,0 +1 @@ | |||
| id: edf5ee6e-a240-4eae-beb2-d4a40215f461 \ No newline at end of file | |||