From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <bug-guix-bounces+larch=yhetil.org@gnu.org>
Received: from mp0 ([2001:41d0:8:6d80::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by ms0.migadu.com with LMTPS
	id cF+gDc4efGGNFAAAgWs5BA
	(envelope-from <bug-guix-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Fri, 29 Oct 2021 18:18:22 +0200
Received: from aspmx1.migadu.com ([2001:41d0:8:6d80::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by mp0 with LMTPS
	id eG5bCc4efGHQXwAA1q6Kng
	(envelope-from <bug-guix-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Fri, 29 Oct 2021 16:18:22 +0000
Received: from lists.gnu.org (lists.gnu.org [209.51.188.17])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by aspmx1.migadu.com (Postfix) with ESMTPS id C75FB2717A
	for <larch@yhetil.org>; Fri, 29 Oct 2021 18:18:21 +0200 (CEST)
Received: from localhost ([::1]:35464 helo=lists1p.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.90_1)
	(envelope-from <bug-guix-bounces+larch=yhetil.org@gnu.org>)
	id 1mgUaC-0007jo-Qa
	for larch@yhetil.org; Fri, 29 Oct 2021 12:18:20 -0400
Received: from eggs.gnu.org ([2001:470:142:3::10]:42560)
 by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1mgUYw-0006cM-PQ
 for bug-guix@gnu.org; Fri, 29 Oct 2021 12:17:02 -0400
Received: from debbugs.gnu.org ([209.51.188.43]:44145)
 by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128)
 (Exim 4.90_1) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1mgUYw-0006g1-HH
 for bug-guix@gnu.org; Fri, 29 Oct 2021 12:17:02 -0400
Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2)
 (envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1mgUYw-0000NV-84
 for bug-guix@gnu.org; Fri, 29 Oct 2021 12:17:02 -0400
X-Loop: help-debbugs@gnu.org
Subject: bug#51487: The openssh service does not allow multiple authorized key
 files per user
Resent-From: Vivien Kraus <vivien@planete-kraus.eu>
Original-Sender: "Debbugs-submit" <debbugs-submit-bounces@debbugs.gnu.org>
Resent-CC: bug-guix@gnu.org
Resent-Date: Fri, 29 Oct 2021 16:17:02 +0000
Resent-Message-ID: <handler.51487.B.16355241781380@debbugs.gnu.org>
Resent-Sender: help-debbugs@gnu.org
X-GNU-PR-Message: report 51487
X-GNU-PR-Package: guix
X-GNU-PR-Keywords: 
To: 51487@debbugs.gnu.org
X-Debbugs-Original-To: bug-guix@gnu.org
Received: via spool by submit@debbugs.gnu.org id=B.16355241781380
 (code B ref -1); Fri, 29 Oct 2021 16:17:02 +0000
Received: (at submit) by debbugs.gnu.org; 29 Oct 2021 16:16:18 +0000
Received: from localhost ([127.0.0.1]:55690 helo=debbugs.gnu.org)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <debbugs-submit-bounces@debbugs.gnu.org>)
 id 1mgUYE-0000MC-DY
 for submit@debbugs.gnu.org; Fri, 29 Oct 2021 12:16:18 -0400
Received: from lists.gnu.org ([209.51.188.17]:35592)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <vivien@planete-kraus.eu>) id 1mgUY6-0000Lz-RB
 for submit@debbugs.gnu.org; Fri, 29 Oct 2021 12:16:16 -0400
Received: from eggs.gnu.org ([2001:470:142:3::10]:42272)
 by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <vivien@planete-kraus.eu>)
 id 1mgUY6-0005P1-G3
 for bug-guix@gnu.org; Fri, 29 Oct 2021 12:16:10 -0400
Received: from planete-kraus.eu ([2a00:5881:4008:2810::309]:49724)
 by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_CHACHA20_POLY1305:256)
 (Exim 4.90_1) (envelope-from <vivien@planete-kraus.eu>)
 id 1mgUXz-0005ol-P4
 for bug-guix@gnu.org; Fri, 29 Oct 2021 12:16:10 -0400
Received: from planete-kraus.eu (localhost.lan [127.0.0.1])
 by planete-kraus.eu (OpenSMTPD) with ESMTP id 7b7b0aa1
 for <bug-guix@gnu.org>; Fri, 29 Oct 2021 16:15:56 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=planete-kraus.eu; h=from
 :to:subject:date:message-id:mime-version:content-type; s=dkim;
 bh=1qGxPc6kQpRdYd63imAgUYG5mSE=; b=TSUlP0FT1YgW5HXP9kiRVDGAPVWf
 x3c1lKVhzUY+nLsnHvk5QbUuJfnEHKAHU+6qVSArSb1vEnR5wbiisolztctBSgcH
 Zo/WvaZLuUml8IdmHRKsx6TA9TmgIVxqzURckaVk/6Zhz/zdCErIQS14qq9sdRvV
 K2MCErCgPXsqkVg=
Received: by planete-kraus.eu (OpenSMTPD) with ESMTPSA id dfe6dd87
 (TLSv1.3:AEAD-CHACHA20-POLY1305-SHA256:256:NO); 
 Fri, 29 Oct 2021 16:15:54 +0000 (UTC)
Date: Fri, 29 Oct 2021 18:15:54 +0200
Message-ID: <87fssjvmbp.fsf@planete-kraus.eu>
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-=";
 micalg=pgp-sha256; protocol="application/pgp-signature"
Received-SPF: pass client-ip=2a00:5881:4008:2810::309;
 envelope-from=vivien@planete-kraus.eu; helo=planete-kraus.eu
X-Spam_score_int: -20
X-Spam_score: -2.1
X-Spam_bar: --
X-Spam_report: (-2.1 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1,
 DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_PASS=-0.001, 
 SPF_PASS=-0.001 autolearn=ham autolearn_force=no
X-Spam_action: no action
X-BeenThere: debbugs-submit@debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
X-BeenThere: bug-guix@gnu.org
List-Id: Bug reports for GNU Guix <bug-guix.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/bug-guix>,
 <mailto:bug-guix-request@gnu.org?subject=unsubscribe>
List-Archive: <https://lists.gnu.org/archive/html/bug-guix>
List-Post: <mailto:bug-guix@gnu.org>
List-Help: <mailto:bug-guix-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/bug-guix>,
 <mailto:bug-guix-request@gnu.org?subject=subscribe>
Errors-To: bug-guix-bounces+larch=yhetil.org@gnu.org
Sender: "bug-Guix" <bug-guix-bounces+larch=yhetil.org@gnu.org>
Reply-to:  Vivien Kraus <vivien@planete-kraus.eu>
From:  Vivien Kraus via Bug reports for GNU Guix <bug-guix@gnu.org>
X-Migadu-Flow: FLOW_IN
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org;
	s=key1; t=1635524302;
	h=from:from:sender:sender:reply-to:reply-to:subject:subject:date:date:
	 message-id:message-id:to:to:cc:mime-version:mime-version:
	 content-type:content-type:resent-cc:resent-from:resent-sender:
	 resent-message-id:list-id:list-help:list-unsubscribe:list-subscribe:
	 list-post:dkim-signature; bh=u15BDT1xz4K7LF7FnZJgQQ7NBtrh4S019X2XW+s5Pdo=;
	b=GQcEwn1xeq6Y7EKURyfyaouGL3q59WEbZQgulVbkJq+pFbNsdLlJn3DT3GtZ+6GZymLrGC
	3Dvkylrigo4WR7Yc7m8Q66dhlC7f4VCdonQuScvxgkbiyFkJCJHBpN+8IhHZ0mjzPf/Kts
	LHEifocWzFSWdqN0804r9UWeAs60/osZRAXvpvaTtlUKRsKvpq2XE44K+CmphPXX6w9eme
	pGR+nIrGVk2BADC8YU0BrtAlwYFON1DK5wQNfZMoyXybgWgHNEWQbgLDrYCOpvfYGouA+g
	SUT29axpOipuWdXXzmsDRfUCvFtvmS3UL4dHaQoKZ6J7haqnvLvB2Gt8XLTF0A==
ARC-Seal: i=1; s=key1; d=yhetil.org; t=1635524302; a=rsa-sha256; cv=none;
	b=AlRspe3usPAbDq1smTwQQuEQU/zIs9GdAesKnVIdzS+qJSZcIlK2UNKoL8Bvv/7r53/tUc
	9WiR136uMa5rzEXGtO6cAdEVF+i7sFxaQ5eXJgKo2zN0cxJIQfwA4wLwLo1cWoEJEkTZw3
	ujxcPzLzeQyvhe/wtv+wE8h2RkjX/XVkvpajqa5jmwCQMHzi6hCQTzSSDKvmiZwaHhbN0F
	BaL/+SZiukJaPVZjKnEoXafbK4hUe450BmTya4DfE/FeMtGhmP/uC8Lb/WYQfBQAuszH5v
	hcNtkBuF0yyaFivSZBT/8DafRSmrRLVfHMa4z8f5b2GmVJXv1P3vURI3N47CRQ==
ARC-Authentication-Results: i=1;
	aspmx1.migadu.com;
	dkim=fail ("headers rsa verify failed") header.d=planete-kraus.eu header.s=dkim header.b=TSUlP0FT;
	dmarc=pass (policy=none) header.from=gnu.org;
	spf=pass (aspmx1.migadu.com: domain of bug-guix-bounces@gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=bug-guix-bounces@gnu.org
X-Migadu-Spam-Score: -5.02
Authentication-Results: aspmx1.migadu.com;
	dkim=fail ("headers rsa verify failed") header.d=planete-kraus.eu header.s=dkim header.b=TSUlP0FT;
	dmarc=pass (policy=none) header.from=gnu.org;
	spf=pass (aspmx1.migadu.com: domain of bug-guix-bounces@gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=bug-guix-bounces@gnu.org
X-Migadu-Queue-Id: C75FB2717A
X-Spam-Score: -5.02
X-Migadu-Scanner: scn0.migadu.com
X-TUID: Sd27q/AAkjKT

--=-=-=
Content-Type: text/plain


Dear guix,

The openssh service is configured with a list of authorized keys, as a
list of items, where each item is a list of 2 values, the user name (as
a string) and the public key file (a file-like object). The service can
be extended with new keys.

To have multiple keys per user, we can put them on the same file-like
object, each on its own line. However, if we put two different records,
only the last one is remembered.

This is a problem if we want to extend the service for users that
already have a key. As I am trying to create a service that would
convert GPG keys to SSH keys, I am in this exact situation: the users
may have already defined SSH keys, and I want to add some more without
losing the others.

Best regards,

Vivien

--=-=-=
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----
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=O9Al
-----END PGP SIGNATURE-----
--=-=-=--