diff --git a/scripts/nginx-create-session-ticket-keys-ramfs b/scripts/nginx-create-session-ticket-keys-ramfs new file mode 100644 index 0000000..34c045c --- /dev/null +++ b/scripts/nginx-create-session-ticket-keys-ramfs @@ -0,0 +1,34 @@ +#!/bin/bash + +#Copyright © 2014-2024 GrapheneOS + +#Permission is hereby granted, free of charge, to any person obtaining a copy +#of this software and associated documentation files (the "Software"), to deal +#in the Software without restriction, including without limitation the rights +#to use, copy, modify, merge, publish, distribute, sublicense, and/or sell +#copies of the Software, and to permit persons to whom the Software is +#furnished to do so, subject to the following conditions: + +#The above copyright notice and this permission notice shall be included in +#all copies or substantial portions of the Software. + +#THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR +#IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, +#FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE +#AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER +#LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, +#OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN +#THE SOFTWARE. + +set -o errexit -o nounset -o pipefail + +umask 077 + +mkdir -p /etc/nginx/session-ticket-keys +mount -t ramfs -o mode=700 ramfs /etc/nginx/session-ticket-keys + +cd /etc/nginx/session-ticket-keys + +for i in {1..4}; do + head -c 80 $i.key +done \ No newline at end of file