From mboxrd@z Thu Jan 1 00:00:00 1970 From: ng0 Subject: bug#27388: offloading: Add support for keyfile-less keys as used by GnuPG Date: Mon, 3 Jul 2017 22:16:56 +0000 Message-ID: <20170703221656.3lhbbpvqs2ynh3ib@abyayala> References: <20170615185615.2mvxprvn6bn523gn@abyayala> <20170615191359.ysym3dv4c7f5lwek@abyayala> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="ogymtq3k3fqd4226" Return-path: Received: from eggs.gnu.org ([2001:4830:134:3::10]:56869) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1dS9fR-0001KD-AU for bug-guix@gnu.org; Mon, 03 Jul 2017 18:18:06 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1dS9fO-0007ai-1W for bug-guix@gnu.org; Mon, 03 Jul 2017 18:18:05 -0400 Received: from debbugs.gnu.org ([208.118.235.43]:48220) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1dS9fN-0007aY-UR for bug-guix@gnu.org; Mon, 03 Jul 2017 18:18:01 -0400 Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1dS9fN-0007nH-LX for bug-guix@gnu.org; Mon, 03 Jul 2017 18:18:01 -0400 Sender: "Debbugs-submit" Resent-Message-ID: Content-Disposition: inline In-Reply-To: <20170615191359.ysym3dv4c7f5lwek@abyayala> List-Id: Bug reports for GNU Guix List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-guix-bounces+gcggb-bug-guix=m.gmane.org@gnu.org Sender: "bug-Guix" To: 27388@debbugs.gnu.org --ogymtq3k3fqd4226 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable ng0 transcribed 2.6K bytes: > ng0 transcribed 2.3K bytes: > > At the moment the field (private-key) in /etc/guix/machines.scm expects > > to be a file. > > When you use GnuPG authentication keys for ssh logins, you have no > > pubkey file, but you have a very long pubkey which can be used with > > ~/.ssh/authorized_keys and similar mechanisms. > >=20 > > Example: > >=20 > > user@abyayala ~/src/guix/guix$ cat /etc/guix/machines.scm > > (list (build-machine > > =E2=80=A6 > > (privat-key "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAACAQDgRM0G+Dnl/wl= rHNb9sr3/yW9tHA8weIbwvfly/NRW6LHSLIPvsLksabVQsYbUH6i2aK2ZlE3Oo+H/R2wrs7dmVC= o57O4MbZk8Kb0fatN3qhq6g/+bNobVIexS5XN6g5JcmXM4ZzR8Q0rEd46oaxFWy8nDSw4RR1d+O= U5/Z/LHR1VUTCQKU0Q1Jv//4YFVq/BEf6oj4SU9+/Li9kUo9f++i4PaiWyrQDm1FAYtMGW5MBKH= 3ohO1dlPgqNjdeqTjZfgvCMPdbyV6Xwtz7KVkCR0+r9u7JefCCKUXL3Ap4VPtjhyCLoRuqJ+ZIp= 9XR2wf3rVGR6KRcLWPEXLkGfAPCs+7uAnfReBxNiWYt+FHuQpeyUld8u8E0G8u9FSf/l25A85Qr= QK0EUrVHdFc1q8tcCeq0EomoIPl7GnwtDIwYmkWtViCz0ivVRvNBUTXvq0XtI/9kLgcBgKfzap8= dLeVSXJrUhYlbcOZNnstzkmut1ce8my5TwSRzr2dxgUF8563cM3cdLu+C9bdMWvR/s4xwu6Q5op= behdFHd2Hj/Lnqv+xwNKNFkhZCHiyum8L/VKQAsboXgJ7/sB7CHsEcBif73RWj3bFcMnPHHlJgx= XB1aOH4kM+y6fF8wW/bGC/9gGiYXzovdbopv3B89oyuT73aoXg4TIPz6gv6Bg1OiGpfseGw=3D= =3D (none)") > > =E2=80=A6 >=20 > Actually this might be the wrong approach. >=20 > The key you see above is the public key equivalent to the ssh pubkey. > The private key is only in the GnuPG keyring. >=20 > Solution for this kind of situations are welcome. For now I'll use > ssh pubkeys. > --=20 > ng0 > OpenPG: A88C8ADD129828D7EAC02E52E22F9BBFEE348588 > https://krosos.org/~/ng0/ https://www.infotropique.org Ignore the second message in this thread. I tried to provide a possible solution which lead to the believe that this is considered solved. It isn't. This wishlist bug is still wanted. --=20 ng0 GnuPG: A88C8ADD129828D7EAC02E52E22F9BBFEE348588 GnuPG: https://n0is.noblogs.org/my-keys https://www.infotropique.org https://krosos.org --ogymtq3k3fqd4226 Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAABCgAdFiEEqIyK3RKYKNfqwC5S4i+bv+40hYgFAllawlgACgkQ4i+bv+40 hYiRCQ/9G6RwJ2ogc6HEZ2G6V4npw495HePVru9+g6JyCUV+ZbAZXjJtFqFv0xOD OpcfBq2G+zmF2iLV8ZPtxVTj9ZGHKdAOSty1jo+2ehluVA5YrPKS/g035uZJPpTc eqXIJU1w3UxHHJStMXP9HjGnLDR2TGrARmLnLY8kkItEDWO68gVTtfhRu+KN/WKs si1VKUelOcb91qkmvV+ixc/uR/spRvGF5/rZE43kz2NOWxwqubadYXc/H5+SPhX3 P0eilmajuCy3dOcbdgcyDaxmXfvNE/MAMgl7Lxo56qM7DnA04RWAP36/p6SCQ74x XbIoEUrd8ii9i9ZWXLspluFpIQF9AL5tj7LQGn6FuC7L0wIv90L1+AYfewx7IE5K 01UIYvE2n6VUwwtlGeq+gZfcr/OMRPcYDP6YY+K8mC+pCBz55yJLdGL9mZxo3Rfu sXzRAKm+Zl3JzDxyahbc+HmiinuRb4yVc0JSsVvJEGfS8qKCrckp3dui19lYSXOd Jxto4Mz2jJSWlM4pkZmsaGMuBJHIBLYy3Cxuo/I5dUo/5ZtJpSJa+TfxIow1pfQf 8bEJ/s70nZBCGpFU2tlXZatN5XCJbEgd4awMuigCTyW0+CxgX3zvbGHPePMA7m18 oJB2zMQ1YjDt8CeppLT7t5KZmXYWmo5P7He0cHbSY7NYsEV4FWE= =2p1A -----END PGP SIGNATURE----- --ogymtq3k3fqd4226--