particle-os/debian-forge-composer
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Generate FIPS compliant SSH keys

Browse source 
Generate FIPS compliant SSH keys required
for testing system FIPS mode support
This commit is contained in:
Miguel Martín 2023-11-20 18:20:37 +01:00 committed by Miguel Martin
parent 38f9687cc1
commit 991293a897
2 changed files with 3 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
internal/boot/context-managers.go
View file

@ -260,6 +260,8 @@ func WithSSHKeyPair(f func(privateKey, publicKey string) error) error {
cmd := exec.Command("ssh-keygen", cmd := exec.Command("ssh-keygen",
"-N", "", "-N", "",
"-f", privateKey, "-f", privateKey,
"-t", "rsa-sha2-256",
"-b", "2048",
) )
err := cmd.Run() err := cmd.Run()

2
tools/gen-ssh.sh
View file

@ -3,7 +3,7 @@
# Create SSH key # Create SSH key
SSH_DATA_DIR="$(mktemp -d)" SSH_DATA_DIR="$(mktemp -d)"
SSH_KEY=${SSH_DATA_DIR}/id_rsa SSH_KEY=${SSH_DATA_DIR}/id_rsa
ssh-keygen -f "${SSH_KEY}" -N "" -q -t rsa ssh-keygen -f "${SSH_KEY}" -N "" -q -t rsa-sha2-256 -b 2048
# Change cloud-init/user-data ssh key # Change cloud-init/user-data ssh key
key=" - $(cat "${SSH_KEY}".pub)" key=" - $(cat "${SSH_KEY}".pub)"