guix archive: Generate curve Ed25519 keys by default.
* guix/scripts/archive.scm (%options) <generate-key>: Default to curve Ed25519. Suggested by Christian Grothoff <grothoff@in.tum.de>.
This commit is contained in:
parent
d0a850698a
commit
1cbfce1669
|
@ -110,9 +110,12 @@ Export/import one or more packages from/to the store.\n"))
|
||||||
(lambda (opt name arg result)
|
(lambda (opt name arg result)
|
||||||
(catch 'gcry-error
|
(catch 'gcry-error
|
||||||
(lambda ()
|
(lambda ()
|
||||||
|
;; XXX: Curve25519 was actually introduced in
|
||||||
|
;; libgcrypt 1.6.0.
|
||||||
(let ((params
|
(let ((params
|
||||||
(string->canonical-sexp
|
(string->canonical-sexp
|
||||||
(or arg "(genkey (rsa (nbits 4:4096)))"))))
|
(or arg "\
|
||||||
|
(genkey (ecdsa (curve Ed25519) (flags rfc6979)))"))))
|
||||||
(alist-cons 'generate-key params result)))
|
(alist-cons 'generate-key params result)))
|
||||||
(lambda (key err)
|
(lambda (key err)
|
||||||
(leave (_ "invalid key generation parameters: ~a: ~a~%")
|
(leave (_ "invalid key generation parameters: ~a: ~a~%")
|
||||||
|
|
Loading…
Reference in New Issue