kunsi/bundlewrap
1
0
Fork 0
Code Issues 1 Pull requests 1 Releases Activity

bundles/wireguard: do not generate PSKs for unmanaged nodes

Browse source
This commit is contained in:
Franzi 2024-03-23 10:19:15 +01:00
parent 104d1f11bf
commit e6f6229b87
Signed by: kunsi
GPG key ID: 12E3D2136B818350
1 changed files with 9 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
bundles/wireguard/metadata.py
View file

@ -83,10 +83,15 @@ def peer_psks(metadata):
'iface': sub('[^a-z0-9-_]+', '_', peer_name)[:12],
}
try:
repo.get_node(peer_name)
if node.name < peer_name:
peers[peer_name]['psk'] = repo.vault.random_bytes_as_base64_for(f'{node.name} wireguard {peer_name}')
else:
peers[peer_name]['psk'] = repo.vault.random_bytes_as_base64_for(f'{peer_name} wireguard {node.name}')
except NoSuchNode:
pass
return {
'wireguard': {