fic/server
2
0
Fork 0
Code Issues Pull Requests 7 Releases Wiki Activity

fickit: Add metadata to update image

Browse Source
This commit is contained in:
nemunaire 2024-03-23 12:56:52 +01:00
parent dbf22f668b
commit fa5aee89c8
3 changed files with 11 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
configs/gen_metadata.sh
View File

@ -6,13 +6,15 @@ export DOMAIN_NAME="live.fic.srs.epita.fr"
export IP_FRONTEND="10.42.192.3/24"
export IP_FRONTEND_ROUTER="10.42.192.1"
export IP_FIC_SRS_FR=$(host ${DOMAIN_NAME} | grep -o '\([0-9]\{1,3\}.\)\+')
export IPS_BACKEND="192.168.3.92/24\\n192.168.4.92/24"
export IPS_BACKEND="192.168.3.92/24\\n192.168.4.92/24\\n"
export IP_BACKEND_ROUTER="192.168.3.1"
export AIRBUS_BASEURL="https://..."
export AIRBUS_TOKEN="abcdef0123456789abcdef0123456789"
export AIRBUS_SESSION_NAME="Forensique"
export IPS_FRONTEND="${IP_FRONTEND}\\n${IP_FIC_SRS_FR}\\n"
escape_newline () {
sed 's/$/\\n/g' | tr -d '\n'
}
@ -32,7 +34,7 @@ then
FNAME="user-data"
fi
export DM_CRYPT=$(jq -r '."dm-crypt".entries.key.content' "${FNAME}" | escape_newline)
export DM_CRYPT=$(jq -r '."dm-crypt".entries.key.content' "${FNAME}" | tr -d '\n')
export DHPARAM=$(jq -r '."tls_config".entries."dhparams-4096.pem".content' "${FNAME}" | escape_newline)
export SYNCRO_PRIVATE_KEY=$(jq -r '.synchro.entries.id_ed25519.content' "${FNAME}" | escape_newline)
export SYNCRO_PUBLIC_KEY=$(jq -r '.synchro.entries."id_ed25519.pub".content' "${FNAME}" | escape_newline)
@ -49,10 +51,10 @@ command -v vault &> /dev/null || (echo "vault could not be found" && exit)
vault login -method=oidc -no-print 2> /dev/null
[ -z "${DM_CRYPT}" ] && export DM_CRYPT="$(tr -d -c "a-zA-Z0-9" < /dev/urandom | fold -w512 | head -n 1)"
export CERT_PEM="$(vault kv get --field=cert.pem fic/cert/fic.srs.epita.fr | escape_newline)"
export CHAIN_PEM="$(vault kv get --field=chain.pem fic/cert/fic.srs.epita.fr | escape_newline)"
export FULLCHAIN_PEM="$(vault kv get --field=fullchain.pem fic/cert/fic.srs.epita.fr | escape_newline)"
export PRIVKEY_PEM="$(vault kv get --field=privkey.pem fic/cert/fic.srs.epita.fr | escape_newline)"
export CERT_PEM="$(vault kv get --field=cert.pem fic/cert/${DOMAIN_NAME} | escape_newline)"
export CHAIN_PEM="$(vault kv get --field=chain.pem fic/cert/${DOMAIN_NAME} | escape_newline)"
export FULLCHAIN_PEM="$(vault kv get --field=fullchain.pem fic/cert/${DOMAIN_NAME} | escape_newline)"
export PRIVKEY_PEM="$(vault kv get --field=privkey.pem fic/cert/${DOMAIN_NAME} | escape_newline)"
if [ -z "${SYNCRO_PUBLIC_KEY}" ] || [ -z "${SYNCRO_PRIVATE_KEY}" ]
then
@ -110,7 +112,7 @@ TEMPLATE='
"entries": {
"frontend-players": {
"perm": "0444",
"content": "${IP_FRONTEND}\n${IP_FIC_SRS_FR}"
"content": "${IPS_FRONTEND}"
},
"frontend-router": {
"perm": "0444",

1
configs/update_imgs.sh
View File

@ -3,6 +3,7 @@
mkdir -p /boot/imgs
# Backup the previous metadata
/usr/bin/metadata -v
mv /boot/imgs/fickit-metadata.iso /boot/imgs/fickit-metadata.iso.bak
for img in fickit-boot-kernel fickit-metadata.iso fickit-boot-initrd.img fickit-prepare-initrd.img fickit-frontend-squashfs.img fickit-backend-squashfs.img fickit-update-initrd.img

1
fickit-update.yml
View File

@ -6,6 +6,7 @@ kernel:
init:
- nemunaire/mdadm:8c8a476336087b395878e02e1d89008da6a38044
- linuxkit/metadata:b082f1bf97a9034d1e4c0e36a5d2923f4e58f540
- alpine:latest