X-Git-Url: https://git.cyclocoop.org/?p=lhc%2Fateliers.git;a=blobdiff_plain;f=remote%2Fiodined-key-send;fp=remote%2Fiodined-key-send;h=b1a2a77bb290fbb65268d95a35008b79e3ad7a84;hp=0000000000000000000000000000000000000000;hb=6647e7fb851e2dbe5a5c7ec60358f7371bf17183;hpb=f40b9456a0359223ae8e5c4e2bcd0e6cd6d1ada8

diff --git a/remote/iodined-key-send b/remote/iodined-key-send
new file mode 100755
index 0000000..b1a2a77
--- /dev/null
+++ b/remote/iodined-key-send
@@ -0,0 +1,20 @@
+#!/bin/sh -eu
+tool=$(readlink -e "${0%/*}/..")
+. "$tool"/remote/lib.sh
+
+install -d -m 700 \
+ "$tool"/var/sec \
+ "$tool"/var/sec/iodine
+if test ! -e "$tool"/var/sec/iodine/"$local_iodine_ns".pass.gpg
+ then gpg --encrypt $gpg_options -o "$tool"/var/sec/iodine/"$local_iodine_ns".pass.gpg <<-EOF
+		$(stdbuf --output 0 tr -d -c '[:alnum:][:punct:]' <"${random:-/dev/urandom}" | head -c 32)
+		EOF
+ fi
+
+gpg --decrypt ${gpg_options-} "$tool"/var/sec/iodine/"$local_iodine_ns".pass.gpg |
+"$tool"/remote/ssh root@"$local_fqdn" '
+	set -eux
+	test ! -e /root/.iodined_pass
+	install -m 400 -o root -g root /dev/stdin \
+	 /root/.iodined_pass
+ '