Fail on trailing new lines in disk-encryption keys

nix-community · Aug 16, 2023 · 0bff847 · 0bff847
1 parent f1a76e0
commit 0bff847
Showing 1 changed file with 5 additions and 0 deletions.
diff --git a/src/nixos-anywhere.sh b/src/nixos-anywhere.sh
@@ -386,6 +386,11 @@ SSH
 fi
 for path in "${!disk_encryption_keys[@]}"; do
   step "Uploading ${disk_encryption_keys[$path]} to $path"
+  [[ "${disk_encryption_keys[$path]}" != *"\n" ]] || {
+    echo "ERROR: disk encryption key $path ends in a trailing newline,
+ this would make it impossible to enter this key at a prompt."
+    exit 1
+  }
   ssh_ "umask 077; cat > $path" <"${disk_encryption_keys[$path]}"
 done