norn/parahub-mesh
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix(heartbeat): Generate VPS WG keypair on OTA from pre-VPS firmware

Browse Source 
uci-defaults only runs on first boot, so devices updating from ph3
would never generate WG keys. Heartbeat now generates them if missing.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
This commit is contained in:
Parahub AI
2026-02-12 11:49:01 +00:00
parent 15acd96076
commit 29c383bb2f
1 changed files with 8 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
files/usr/bin/parahub-heartbeat
View File

@@ -19,6 +19,14 @@ UPTIME="$(cut -d. -f1 /proc/uptime)"
MESH_IP=$(ip -4 addr show br-private 2>/dev/null | grep -o 'inet [0-9.]*' | cut -d' ' -f2) MESH_IP=$(ip -4 addr show br-private 2>/dev/null | grep -o 'inet [0-9.]*' | cut -d' ' -f2)
MESH_IP="${MESH_IP:-unknown}" MESH_IP="${MESH_IP:-unknown}"
# Generate WireGuard VPS keypair if missing (OTA from pre-VPS firmware)
if [ "$ROLE" != "bee" ] && [ ! -f /etc/parahub/wg_vps_private.key ] && command -v wg >/dev/null 2>&1; then
umask 077
wg genkey > /etc/parahub/wg_vps_private.key
wg pubkey < /etc/parahub/wg_vps_private.key > /etc/parahub/wg_vps_public.key
logger -t parahub-heartbeat "Generated VPS WireGuard keypair (OTA migration)"
fi
# Read WireGuard VPS public key (Bumblebee only) # Read WireGuard VPS public key (Bumblebee only)
WG_PUBKEY="" WG_PUBKEY=""
if [ -f /etc/parahub/wg_vps_public.key ]; then if [ -f /etc/parahub/wg_vps_public.key ]; then