Git-Mirrors/constellation
1
0
Fork 0
mirror of https://github.com/edgelesssys/constellation.git synced 2025-04-20 07:25:51 -04:00
Code Issues Packages Projects Releases Wiki Activity

node: reference host certificate

Browse Source
This commit is contained in:
miampf 2025-04-03 17:21:51 +02:00
parent f4d8f87436
commit df3ed93e50
No known key found for this signature in database
GPG Key ID: EF039364B5B6886C
3 changed files with 1 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
image/base/mkosi.skeleton/usr/lib/systemd/system-preset/30-constellation.preset
View File

@ -10,4 +10,3 @@ enable measurements.service
enable export_constellation_debug.service
enable systemd-timesyncd
enable udev-trigger.service
enable create-host-ssh-key.service

10
image/base/mkosi.skeleton/usr/lib/systemd/system/create-host-ssh-key.service
View File

@ -1,10 +0,0 @@
[Unit]
Description=Create a host SSH key
Before=network-pre.target
[Service]
Type=oneshot
ExecStart=/bin/bash -c "mkdir -p /run/ssh; ssh-keygen -t ecdsa -q -N '' -f /run/ssh/ssh_host_ecdsa_key"
[Install]
WantedBy=network-pre.target

1
image/sysroot-tree/etc/ssh/sshd_config
View File

@ -1,4 +1,5 @@
HostKey /run/ssh/ssh_host_ecdsa_key
HostCertificate /run/ssh/ssh_host_cert.pub
TrustedUserCAKeys /run/ssh/ssh_ca.pub
PasswordAuthentication no
ChallengeResponseAuthentication no