From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <bug-guix-bounces+larch=yhetil.org@gnu.org>
Received: from mp10.migadu.com ([2001:41d0:2:bcc0::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by ms0.migadu.com with LMTPS
	id OGScCGEr02H/YgEAgWs5BA
	(envelope-from <bug-guix-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Mon, 03 Jan 2022 17:59:13 +0100
Received: from aspmx1.migadu.com ([2001:41d0:2:bcc0::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by mp10.migadu.com with LMTPS
	id sIw/AWEr02Ej8AAAG6o9tA
	(envelope-from <bug-guix-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Mon, 03 Jan 2022 17:59:13 +0100
Received: from lists.gnu.org (lists.gnu.org [209.51.188.17])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by aspmx1.migadu.com (Postfix) with ESMTPS id C27393E03F
	for <larch@yhetil.org>; Mon,  3 Jan 2022 17:59:12 +0100 (CET)
Received: from localhost ([::1]:40452 helo=lists1p.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.90_1)
	(envelope-from <bug-guix-bounces+larch=yhetil.org@gnu.org>)
	id 1n4Qfv-00069V-NU
	for larch@yhetil.org; Mon, 03 Jan 2022 11:59:11 -0500
Received: from eggs.gnu.org ([209.51.188.92]:56796)
 by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1n4Qfm-00066y-S2
 for bug-guix@gnu.org; Mon, 03 Jan 2022 11:59:02 -0500
Received: from debbugs.gnu.org ([209.51.188.43]:52721)
 by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128)
 (Exim 4.90_1) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1n4Qfm-0003QM-F6
 for bug-guix@gnu.org; Mon, 03 Jan 2022 11:59:02 -0500
Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2)
 (envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1n4Qfm-0001Gv-BO
 for bug-guix@gnu.org; Mon, 03 Jan 2022 11:59:02 -0500
X-Loop: help-debbugs@gnu.org
Subject: bug#39366: guix offload sometimes can use ~/.ssh/config, sometimes not
Resent-From: Ludovic =?UTF-8?Q?Court=C3=A8s?= <ludo@gnu.org>
Original-Sender: "Debbugs-submit" <debbugs-submit-bounces@debbugs.gnu.org>
Resent-CC: bug-guix@gnu.org
Resent-Date: Mon, 03 Jan 2022 16:59:02 +0000
Resent-Message-ID: <handler.39366.B39366.16412291264863@debbugs.gnu.org>
Resent-Sender: help-debbugs@gnu.org
X-GNU-PR-Message: followup 39366
X-GNU-PR-Package: guix
X-GNU-PR-Keywords: 
To: zimoun <zimon.toutoune@gmail.com>
Received: via spool by 39366-submit@debbugs.gnu.org id=B39366.16412291264863
 (code B ref 39366); Mon, 03 Jan 2022 16:59:02 +0000
Received: (at 39366) by debbugs.gnu.org; 3 Jan 2022 16:58:46 +0000
Received: from localhost ([127.0.0.1]:36034 helo=debbugs.gnu.org)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <debbugs-submit-bounces@debbugs.gnu.org>)
 id 1n4QfU-0001GK-6S
 for submit@debbugs.gnu.org; Mon, 03 Jan 2022 11:58:45 -0500
Received: from hera.aquilenet.fr ([185.233.100.1]:34014)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <ludo@gnu.org>) id 1n4QfE-0001Fq-U2
 for 39366@debbugs.gnu.org; Mon, 03 Jan 2022 11:58:43 -0500
Received: from localhost (localhost [127.0.0.1])
 by hera.aquilenet.fr (Postfix) with ESMTP id 12EC83D5;
 Mon,  3 Jan 2022 17:58:23 +0100 (CET)
X-Virus-Scanned: Debian amavisd-new at aquilenet.fr
Received: from hera.aquilenet.fr ([127.0.0.1])
 by localhost (hera.aquilenet.fr [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id JXeP8FvbexJq; Mon,  3 Jan 2022 17:58:22 +0100 (CET)
Received: from ribbon (91-160-117-201.subs.proxad.net [91.160.117.201])
 by hera.aquilenet.fr (Postfix) with ESMTPSA id B4401B8;
 Mon,  3 Jan 2022 17:58:21 +0100 (CET)
From: Ludovic =?UTF-8?Q?Court=C3=A8s?= <ludo@gnu.org>
References: <87blqkrueq.fsf@gmail.com> <87sgjpp9v6.fsf@gnu.org>
 <86wnk4hdnn.fsf@gmail.com>
X-URL: http://www.fdn.fr/~lcourtes/
X-Revolutionary-Date: 14 =?UTF-8?Q?Niv=C3=B4se?= an 230 de la
 =?UTF-8?Q?R=C3=A9volution?=
X-PGP-Key-ID: 0x090B11993D9AEBB5
X-PGP-Key: http://www.fdn.fr/~lcourtes/ludovic.asc
X-PGP-Fingerprint: 3CE4 6455 8A84 FDC6 9DB4  0CFB 090B 1199 3D9A EBB5
X-OS: x86_64-pc-linux-gnu
Date: Mon, 03 Jan 2022 17:58:21 +0100
In-Reply-To: <86wnk4hdnn.fsf@gmail.com> (zimoun's message of "Thu, 16 Dec 2021
 14:39:40 +0100")
Message-ID: <87r19og3iq.fsf@gnu.org>
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.2 (gnu/linux)
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="=-=-="
X-Spamd-Bar: /
X-Rspamd-Server: hera
X-Rspamd-Queue-Id: 12EC83D5
X-Spamd-Result: default: False [0.00 / 15.00]; ARC_NA(0.00)[];
 RCVD_VIA_SMTP_AUTH(0.00)[]; FROM_HAS_DN(0.00)[];
 RCPT_COUNT_THREE(0.00)[3]; FREEMAIL_ENVRCPT(0.00)[gmail.com];
 TO_MATCH_ENVRCPT_ALL(0.00)[]; TAGGED_RCPT(0.00)[];
 MIME_GOOD(-0.10)[multipart/mixed,text/plain,text/x-patch];
 TO_DN_SOME(0.00)[]; MIME_BASE64_TEXT(0.10)[];
 FREEMAIL_TO(0.00)[gmail.com]; FROM_EQ_ENVFROM(0.00)[];
 MIME_TRACE(0.00)[0:+,1:+,2:+,3:+]; RCVD_COUNT_TWO(0.00)[2];
 RCVD_TLS_ALL(0.00)[]; MID_RHS_MATCH_FROM(0.00)[];
 FREEMAIL_CC(0.00)[gmail.com,debbugs.gnu.org]
X-BeenThere: debbugs-submit@debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
X-BeenThere: bug-guix@gnu.org
List-Id: Bug reports for GNU Guix <bug-guix.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/bug-guix>,
 <mailto:bug-guix-request@gnu.org?subject=unsubscribe>
List-Archive: <https://lists.gnu.org/archive/html/bug-guix>
List-Post: <mailto:bug-guix@gnu.org>
List-Help: <mailto:bug-guix-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/bug-guix>,
 <mailto:bug-guix-request@gnu.org?subject=subscribe>
Cc: 39366@debbugs.gnu.org, Maxim Cournoyer <maxim.cournoyer@gmail.com>
Errors-To: bug-guix-bounces+larch=yhetil.org@gnu.org
Sender: "bug-Guix" <bug-guix-bounces+larch=yhetil.org@gnu.org>
X-Migadu-Flow: FLOW_IN
X-Migadu-Country: US
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org;
	s=key1; t=1641229152;
	h=from:from:sender:sender:reply-to:subject:subject:date:date:
	 message-id:message-id:to:to:cc:cc:mime-version:mime-version:
	 content-type:content-type:resent-cc:resent-from:resent-sender:
	 resent-message-id:in-reply-to:in-reply-to:references:references:
	 list-id:list-help:list-unsubscribe:list-subscribe:list-post;
	bh=FhhDXIfXgUd8mvutjzUJo0A9d/TsgPfKL67lgace1Es=;
	b=erynXa2aJ6fDLm7LAL3BxDB3kSX3LxzAYfEvAWqczZ+kTkOo09dBXxZIiYeUhBtGexbHKu
	3EMHkx7xFU2oeHFBNRBqjvnt1Jv6XkN1y+gn466xqfZiu/j1b4Vjp8Lf/FPgPMSVU3EsUT
	tT7XN0cfWmIlFEhvgD2W3V8JLpdbii08UY68Dj8XHPEMPVsHOiZmVgkm0iUyHW47F4aamn
	dbk2uYvkQHYi0mKYzyAHzaqfidNND3pIoWX3K5rL9NUmxlI9L4GnLQsFl7YU8O5XhB8g0l
	KeNKzi1a3oM4uhh1h+LFzJFzsKp+Cle+D32t5NRe0d3uDf7QQV6T4WMS3H1f+A==
ARC-Seal: i=1; s=key1; d=yhetil.org; t=1641229152; a=rsa-sha256; cv=none;
	b=fowyE8v/1LJ3sCpfULiF7b+MQgDKdzonoc8ApPOUsiY375itqe9cF6rIfOEH+WecFpggWa
	cc0PnlEZuEJ7Vpal7rSLmgWn/ZJ7uogWl9EkZgtOAmOo8rYk4LvkObVGB2QlpUaXTYBAhG
	r9+Gy89hq3pF3LRuXFtewPdpvJwr5YDr/bhtCUwI+STEHlbSrjkgc7GENfDnfivWC3bjM1
	pxWiUlrR8ImyQw7dgxkllJXClLgvlFTTgRp5hB1uHXz3aIqAE7ExXOyfEgAr8DQF1xKD2k
	skMYpxlNE8g8z3MQOm6ZRIuIzZnsU4ESwH2A7r1rqFjj303ygDFO0KOqhiLpeg==
ARC-Authentication-Results: i=1;
	aspmx1.migadu.com;
	dkim=none;
	dmarc=pass (policy=none) header.from=gnu.org;
	spf=pass (aspmx1.migadu.com: domain of "bug-guix-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="bug-guix-bounces+larch=yhetil.org@gnu.org"
X-Migadu-Spam-Score: -5.29
Authentication-Results: aspmx1.migadu.com;
	dkim=none;
	dmarc=pass (policy=none) header.from=gnu.org;
	spf=pass (aspmx1.migadu.com: domain of "bug-guix-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="bug-guix-bounces+larch=yhetil.org@gnu.org"
X-Migadu-Queue-Id: C27393E03F
X-Spam-Score: -5.29
X-Migadu-Scanner: scn0.migadu.com
X-TUID: Cryc/Ez20kLw

--=-=-=
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable

Hi,

zimoun <zimon.toutoune@gmail.com> skribis:

> On Wed, 05 Feb 2020 at 12:11, Ludovic Court=C3=A8s <ludo@gnu.org> wrote:

[...]

>> That is confusing indeed.  It comes from the fact that =E2=80=98guix off=
load=E2=80=99 in
>> the last case is running as root; thus, it sees a different
>> ~/.ssh/config.
>
> Therefore, see 52517. :-)  And the manual is also confusing, IMHO.
>
> <http://issues.guix.gnu.org/issue/52517>
>
>
>> We could instruct =E2=80=98guix offload=E2=80=99 to always ignore ~/.ssh=
/config, but
>> that wouldn=E2=80=99t be great because using it can be useful.
>
> Well, I am in favor of POLA.

Yeah, actually that would be in line with
bd8345777f5a48ee61656248655ebac71a09e926.

How about this:


--=-=-=
Content-Type: text/x-patch
Content-Disposition: inline

diff --git a/guix/scripts/offload.scm b/guix/scripts/offload.scm
index 9ddf458c13..925325ef5f 100644
--- a/guix/scripts/offload.scm
+++ b/guix/scripts/offload.scm
@@ -231,6 +231,9 @@ (define* (open-ssh-session machine #:optional max-silent-time)
                                ;; stateless instead.
                                #:knownhosts "/dev/null"
 
+                               ;; Likewise for ~/.ssh/config.
+                               #:config "/dev/null"
+
                                ;; We need lightweight compression when
                                ;; exchanging full archives.
                                #:compression

--=-=-=
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: base64

DQo/DQoNCkx1ZG/igJkuDQo=
--=-=-=--