Daniel Barlow
69bf6cb5fb
write-fennel quote PATH properly
...
escapeShellArg only quotes if the string contains special
characters, but for a Lua string we must quote unconditionally
2024-09-07 22:31:44 +01:00
Daniel Barlow
9f58e7b926
maybe fix nixpkgs-unstable lua
2024-09-07 00:58:11 +01:00
Daniel Barlow
5a5c27ab9f
think
2024-09-06 22:37:49 +01:00
Daniel Barlow
277c91acdf
Revert "remove luaposix ref in write-fennel"
...
This reverts commit a60c2539a6
.
2024-09-06 00:33:30 +01:00
Daniel Barlow
e0725489ca
unbreak pppoe ci job
2024-09-06 00:33:30 +01:00
Daniel Barlow
cc47515cf8
watch-outputs remove debug code
2024-09-06 00:13:54 +01:00
Daniel Barlow
464913cc8f
tangc use spawn to invoke jose
...
hopefully we are now deadlock-free
2024-09-06 00:12:45 +01:00
Daniel Barlow
e604d628e3
fennel anoia.process.spawn
...
runs a subprocess and invokes a callback whenever its io
descriptors are ready
2024-09-06 00:11:33 +01:00
Daniel Barlow
e2a597589b
anoia.fs.find-executable looks for bin in colon-sep list of directories
2024-09-06 00:08:40 +01:00
Raito Bezarius
a139a262c1
seedrng: init at 2022.04
...
Signed-off-by: Raito Bezarius <masterancpp@gmail.com>
2024-09-05 14:18:00 +01:00
Daniel Barlow
6a5fed83dd
conditional fetch in json-to-fstree
2024-09-05 11:14:47 +01:00
Daniel Barlow
bcf5ab24e8
tidy watch-outputs startup message
2024-09-05 10:11:16 +01:00
Daniel Barlow
32bf80c6fa
devout: unlink socket pathname before binding
2024-09-05 10:05:13 +01:00
Daniel Barlow
12275f6896
add more test for table=
2024-09-04 21:21:30 +01:00
Daniel Barlow
a60c2539a6
remove luaposix ref in write-fennel
2024-09-04 21:21:02 +01:00
Daniel Barlow
146a2d9ac0
fix startup race/fencepost in watch-ssh-keys
...
if it starts _after_ the outputs are populated, it should
write the first lot of outputs without waiting for a change
2024-09-04 21:19:51 +01:00
Daniel Barlow
091d863710
extract pppoe/l2tp common code
2024-09-04 12:02:00 +01:00
Daniel Barlow
c7bcfbfa34
make pppoe/l2tp more consistent
2024-09-03 22:57:45 +01:00
Daniel Barlow
500a3c1025
make nodefaultroute explicit in ppp
2024-09-03 22:53:13 +01:00
Daniel Barlow
0c0d0eed8a
make watch-ssh-keys robust against missing key
2024-09-03 22:51:29 +01:00
Daniel Barlow
699cf97206
improve tangc http error messages
2024-09-03 22:50:55 +01:00
Daniel Barlow
cd0093279c
think
2024-09-01 10:14:31 +01:00
Daniel Barlow
034d6aacc4
tangc handle non-zero exit from jwe dec
...
Sometimes it exits non-zero but decrypts the file *anyway*. It only
does this on the device and I haven't been able to reproduce on build,
so this is a workaround until we find the root cause
2024-09-01 09:57:38 +01:00
Daniel Barlow
e590c0ad3f
secrets subscriber: add provider as dep to controlled service
2024-09-01 09:56:59 +01:00
Daniel Barlow
14abdd9998
tang: notify on ready
2024-08-31 23:24:50 +01:00
Daniel Barlow
6287b92000
fix bugs handling base64 padding
2024-08-31 22:43:25 +01:00
Daniel Barlow
d2215d3e56
tangc popen retry on short read
2024-08-31 22:18:23 +01:00
Daniel Barlow
3cf2308bee
tangc: stop printing unexpected blank lines
2024-08-31 15:29:10 +01:00
Daniel Barlow
3913989be3
provide string to perform-encryption
...
instead of letting it read stdin, which I think may have been read
by a subprocess already sometimes?
2024-08-31 15:27:54 +01:00
Daniel Barlow
43e5e6876e
improve tangc error messages
2024-08-31 15:22:26 +01:00
Daniel Barlow
7d6c80570c
refactor all writeFennelScript calls to use writeFennel directly
2024-08-30 20:57:42 +01:00
Daniel Barlow
e745991b9d
restart pppoe/l2tp in secrets changes
2024-08-30 20:49:27 +01:00
Daniel Barlow
defbfce1fb
finish converting outputRef to lambda
2024-08-30 20:46:48 +01:00
Daniel Barlow
0df2c83382
tighten perms on service state directory
2024-08-29 23:56:43 +01:00
Daniel Barlow
01c28de88d
think
2024-08-29 23:56:20 +01:00
Daniel Barlow
2bf197cad8
document outputs and secrets
2024-08-29 23:55:32 +01:00
Daniel Barlow
a8a19977ca
(untested) template service for tang encrypted secrets
2024-08-28 22:32:26 +01:00
Daniel Barlow
8a9284af1e
think
2024-08-28 22:23:00 +01:00
Daniel Barlow
7351e143c5
remove redundant sourcing of ${serviceFns}
...
this is done by the oneshot and longrun functions
2024-08-28 21:28:27 +01:00
Daniel Barlow
283c3154a7
missing file in s6-rc-up-tree test fixture
2024-08-28 21:18:54 +01:00
Daniel Barlow
34f37d60d9
missed adding this
2024-08-28 20:56:52 +01:00
Daniel Barlow
fe7b092075
(untested) http basic auth for outboard secrets
2024-08-28 20:53:59 +01:00
Daniel Barlow
b56f121e04
fetch lua glue: handle missing content-length
2024-08-28 19:52:00 +01:00
Daniel Barlow
d5d621f310
rename http-fstree => json-to-fstree
...
it works for file urls as well, not just http
2024-08-28 16:36:49 +01:00
Daniel Barlow
da95a9fa62
tangc support encryption
2024-08-28 18:55:20 +01:00
Daniel Barlow
85071c88e7
remove argv0 from calls to jose
2024-08-28 11:16:43 +01:00
Daniel Barlow
74093b7ee3
josep! runs jose without json parsing the output
2024-08-28 08:13:50 +01:00
Daniel Barlow
41733e58d6
remove unused code, tidy string parsing
2024-08-28 07:20:07 +01:00
Daniel Barlow
9041d5d63a
add jose! fn to reduce error-checking boilerplate
2024-08-28 07:10:47 +01:00
Daniel Barlow
001ebdc601
remove unused requires
2024-08-28 06:52:04 +01:00