[PATCH v2] wireguard-tools: allow generating private_key

Jan-Niklas Burfeind git at aiyionpri.me
Wed Feb 2 07:18:24 PST 2022

Tested-by: Jan-Niklas Burfeind <git at aiyionpri.me>

This has been running on at least 80 devices in the past months in our 

Let me know if and what you need more

On 9/15/21 03:09, Leonardo Mörlein wrote:
> When the uci configuration is created automatically during a very early
> stage, where no entropy daemon is set up, generating the key directly is
> not an option. Therefore we allow to set the private_key to "generate"
> and generate the private key directly before the interface is taken up.
> Signed-off-by: Leonardo Mörlein <me at irrelefant.net>
> ---
> v2: Changes since v1:
> - The (recently introduced) uci flag "-t" is used to avoid interference
>    with potentially existing uncommited user changes. This addresses
>    Jo-Philipp Wich's concerns about v1 of the patch.
> - The functionality has been moved to a function, so it can be included
>    from other files.
> References:
> - v1 of the patch: https://patchwork.ozlabs.org/project/openwrt/patch/20210108012435.175345-1-me@irrelefant.net/
> - uci "-t": https://git.openwrt.org/?p=project/uci.git;a=commit;h=4b3db1179747b6a6779029407984bacef851325c
> [...]

More information about the openwrt-devel mailing list