// Copyright (c) HashiCorp, Inc.
// SPDX-License-Identifier: MPL-2.0
package keygen
import (
"crypto/rand"
"encoding/base64"
"flag"
"fmt"
"github.com/hashicorp/consul/command/flags"
"github.com/mitchellh/cli"
)
func New ( ui cli . Ui ) * cmd {
c := & cmd { UI : ui }
c . init ( )
return c
}
type cmd struct {
UI cli . Ui
flags * flag . FlagSet
help string
}
func ( c * cmd ) init ( ) {
c . flags = flag . NewFlagSet ( "" , flag . ContinueOnError )
c . help = flags . Usage ( help , c . flags )
}
func ( c * cmd ) Run ( args [ ] string ) int {
if err := c . flags . Parse ( args ) ; err != nil {
return 1
}
key := make ( [ ] byte , 32 )
n , err := rand . Reader . Read ( key )
if err != nil {
c . UI . Error ( fmt . Sprintf ( "Error reading random data: %s" , err ) )
return 1
}
if n != 32 {
c . UI . Error ( fmt . Sprintf ( "Couldn't read enough entropy. Generate more entropy!" ) )
return 1
}
c . UI . Output ( base64 . StdEncoding . EncodeToString ( key ) )
return 0
}
func ( c * cmd ) Synopsis ( ) string {
return synopsis
}
func ( c * cmd ) Help ( ) string {
return c . help
}
const synopsis = "Generates a new encryption key"
const help = `
Usage : consul keygen
Generates a new 32 - byte encryption key that can be used to configure the
agent to encrypt traffic . The output of this command is already
in the proper format that the agent expects .
`