feat: add comment to generated ssh-keys

oddlama · Jan 15, 2024 · e02a57e · e02a57e
1 parent e529da8
commit e02a57e
Showing 1 changed file with 6 additions and 1 deletion.
diff --git a/modules/agenix-rekey.nix b/modules/agenix-rekey.nix
@@ -450,6 +450,11 @@ in {
     hex = {pkgs, ...}: "${pkgs.openssl}/bin/openssl rand -hex 24";
     passphrase = {pkgs, ...}: "${pkgs.xkcdpass}/bin/xkcdpass --numwords=6 --delimiter=' '";
     dhparams = {pkgs, ...}: "${pkgs.openssl}/bin/openssl dhparam 4096";
-    ssh-ed25519 = {pkgs, ...}: ''(exec 3>&1; ${pkgs.openssh}/bin/ssh-keygen -q -t ed25519 -N "" -f /proc/self/fd/3 <<<y >/dev/null 2>&1; true)'';
+    ssh-ed25519 = {
+      lib,
+      name,
+      pkgs,
+      ...
+    }: ''(exec 3>&1; ${pkgs.openssh}/bin/ssh-keygen -q -t ed25519 -N "" -C ${lib.escapeShellArg "${config.networking.hostName}:${name}"} -f /proc/self/fd/3 <<<y >/dev/null 2>&1; true)'';
   };
 }