首頁 探索 說明
登入
akillibulut
/
kilo
镜像来自 https://github.com/squat/kilo
2
0
複刻 0
Files 問題管理 0 Wiki
瀏覽代碼

Don't always write private key to disk

Only write private key to disk on new key generation. Otherwise
just use what is there. This allows externally key generation
and injection with a secret.
Matthias Baur 3 年之前
父節點
f3986e3097
當前提交
bbb7dc8c8a
共有 1 個文件被更改,包括 3 次插入3 次删除
統一視圖 顯示文件統計
  1. 3 3
      pkg/mesh/mesh.go

+ 3 - 3
pkg/mesh/mesh.go
查看文件 

@@ -102,14 +102,14 @@ func New(backend Backend, enc encapsulation.Encapsulator, granularity Granularit
 
 		if private, err = wgtypes.GeneratePrivateKey(); err != nil {
 
 		if private, err = wgtypes.GeneratePrivateKey(); err != nil {
 
 			return nil, err
 
 			return nil, err
 
 		}
 
 		}
 
+		if err := os.WriteFile(privateKeyPath, []byte(private.String()), 0600); err != nil {
 
+			return nil, fmt.Errorf("failed to write private key to disk: %v", err)
 
+		}
 
 	}
 
 	}
 
 	public := private.PublicKey()
 
 	public := private.PublicKey()
 
 	if err != nil {
 
 	if err != nil {
 
 		return nil, err
 
 		return nil, err
 
 	}
 
 	}
 
-	if err := os.WriteFile(privateKeyPath, []byte(private.String()), 0600); err != nil {
 
-		return nil, fmt.Errorf("failed to write private key to disk: %v", err)
 
-	}
 
 	cniIndex, err := cniDeviceIndex()
 
 	cniIndex, err := cniDeviceIndex()
 
 	if err != nil {
 
 	if err != nil {
 
 		return nil, fmt.Errorf("failed to query netlink for CNI device: %v", err)
 
 		return nil, fmt.Errorf("failed to query netlink for CNI device: %v", err)