Skip to content

Instantly share code, notes, and snippets.

View arianvp's full-sized avatar
🎱
Focusing

Arian van Putten arianvp

🎱
Focusing
243 followers · 55 following
View GitHub Profile
@arianvp
arianvp / gist:ec48ffb00aeffb5e07fbde25c28a2fbb
Created August 27, 2023 13:08
View gist:ec48ffb00aeffb5e07fbde25c28a2fbb
[root@nixos:~]# poweroff
[root@nixos:~]# Stopping Session 1 of User root...
Stopping Session 2 of User root...
[ OK ] Removed slice Slice /system/modprobe.
[ OK ] Stopped target Multi-User System.
[ OK ] Stopped target Login Prompts.
[ OK ] Stopped target Containers.
[ OK ] Stopped target Network is Online.
@arianvp
arianvp / README.md
Last active August 3, 2023 07:16
An error occurred (AccessDenied) when calling the StartInstanceRefresh operation: You are not authorized to use launch template:
View README.md

An error occurred (AccessDenied) when calling the StartInstanceRefresh operation: You are not authorized to use launch template:

You came here because you Googled the above error and got zero hits. You will now get a hit!

Problem

You have an error like:

An error occurred (AccessDenied) when calling the StartInstanceRefresh operation: You are not authorized to use launch template:
@arianvp
arianvp / thesis.nix
Created March 8, 2023 12:24
thesis.nix
View thesis.nix
{ pkgs ? import <nixpkgs> {} }:
let
fontsConf = pkgs.makeFontsConf {
fontDirectories = [ ./fonts ];
};
texlive = pkgs.texlive.combine {
inherit (pkgs.texlive)
appendix
tikzmark
@arianvp
arianvp / main.go
Created January 26, 2023 10:12
Fulcio watcher
View main.go
package main
import (
"context"
"fmt"
"log"
"net/http"
"time"
ct "github.com/google/certificate-transparency-go"
@arianvp
arianvp / simplewebauthn.ts
Created January 19, 2023 08:19
Simplified Webauthn
View simplewebauthn.ts
interface SimpleCredential {
id: string;
publicKey: ArrayBuffer;
}
async function create(name: string) : Promise<SimpleCredential> {
// NOTE: We don't care about the challenge because we don't check attestation
const challenge = crypto.getRandomValues(new Uint8Array(16));
let credential = await navigator.credentials.create({
publicKey: {
@arianvp
arianvp / main.go
Last active September 19, 2022 17:59
TPM2 Activation and Attestation flow in Go
View main.go
package main
import (
"crypto/ecdsa"
"crypto/elliptic"
"crypto/rand"
"crypto/subtle"
"crypto/x509"
"log"
"math/big"
@arianvp
arianvp / webauthn-dpop.md
Created July 4, 2022 10:07
Using webauthn for sender constrained access tokens
View webauthn-dpop.md

Using webauthn for sender constrained access tokens

@arianvp
arianvp / gist:b64a910aa4226219ed52cbafc2ad1f0d
Last active August 2, 2022 02:10
View gist:b64a910aa4226219ed52cbafc2ad1f0d

Nix.dev @zupo

All the commands in the nix.dev documentation are now checked by CI.

The problem is that we have nested shells; which default tooling for this doesn't work. It works on my machine. What left is polishing and adding it to CI

Nix code samples are extracted into a file such that e.g. following nix-build calls can access those files. So that we can check that the default.nix in the document actually works.

@arianvp
arianvp / flake.nix
Created February 22, 2022 19:18
A flake to deploy app to kubernetes
View flake.nix
{
description = "A flake that builds a go app and deploys to kubernetes";
inputs = {
utils.url = "github:numtide/flake-utils";
nixpkgs.url = "nixpkgs/nixpkgs-unstable";
};
outputs = { self, nixpkgs, utils }: utils.lib.eachDefaultSystem (system:
let
@arianvp
arianvp / cni.conf
Created February 3, 2022 17:26
View cni.conf
{
"cniversion":"1.0.0",
"name":"kube",
"plugins": [
{
"type": "ptp",
"ipam": {
"type": "host-local",
"routes": [ { "dst": "::/0" } ],
"ranges": [ { "subnet": "2001:19f0:6c01:1f10::/80" } ]