Add GCEState.get_ssh_host_keys

This will let NixOps provide the host keys directly to the ssh client, regardless of whether they've been saved to user dotfiles. It solves a problem where the host keys were not known on systems that retrieve the state from a remote state provider. See NixOS/nixops#1464
hercules-ci · Nov 18, 2021 · 53dfef4 · 53dfef4
1 parent 7124530
commit 53dfef4
Showing 1 changed file with 13 additions and 0 deletions.
diff --git a/nixops_gcp/backends/gce.py b/nixops_gcp/backends/gce.py
@@ -207,6 +207,19 @@ def gen_metadata(self, metadata):
  "items": [{"key": k, "value": v} for k, v in metadata.items()],
  }
 
+ # invoked by nixops before calling ssh
+ def get_ssh_host_keys(self):
+ return (
+ self.private_ipv4
+ + " "
+ + self.public_host_key
+ + "\n"
+ + self.public_ipv4
+ + " "
+ + self.public_host_key
+ + "\n"
+ )
+
  def update_block_device_mapping(self, k, v):
  x = self.block_device_mapping
  if v == None: