From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <help-guix-bounces+larch=yhetil.org@gnu.org>
Received: from mp10.migadu.com ([2001:41d0:2:bcc0::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by ms5.migadu.com with LMTPS
	id MGvRFQCUp2JbaAEAbAwnHQ
	(envelope-from <help-guix-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Mon, 13 Jun 2022 21:46:08 +0200
Received: from aspmx1.migadu.com ([2001:41d0:2:bcc0::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by mp10.migadu.com with LMTPS
	id +IvaFACUp2JxHgEAG6o9tA
	(envelope-from <help-guix-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Mon, 13 Jun 2022 21:46:08 +0200
Received: from lists.gnu.org (lists.gnu.org [209.51.188.17])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by aspmx1.migadu.com (Postfix) with ESMTPS id BE7E816242
	for <larch@yhetil.org>; Mon, 13 Jun 2022 21:46:07 +0200 (CEST)
Received: from localhost ([::1]:34512 helo=lists1p.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.90_1)
	(envelope-from <help-guix-bounces+larch=yhetil.org@gnu.org>)
	id 1o0q0j-0001RB-Vx
	for larch@yhetil.org; Mon, 13 Jun 2022 15:46:06 -0400
Received: from eggs.gnu.org ([2001:470:142:3::10]:58060)
 by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <dom@dominicm.dev>) id 1o0q0N-0001O4-P7
 for help-guix@gnu.org; Mon, 13 Jun 2022 15:45:43 -0400
Received: from mta-13-4.privateemail.com ([198.54.127.109]:49508)
 by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <dom@dominicm.dev>) id 1o0q0K-0004QC-Ph
 for help-guix@gnu.org; Mon, 13 Jun 2022 15:45:42 -0400
Received: from mta-13.privateemail.com (localhost [127.0.0.1])
 by mta-13.privateemail.com (Postfix) with ESMTP id 05C67180009F;
 Mon, 13 Jun 2022 15:45:32 -0400 (EDT)
Received: from guix (unknown [10.20.151.185])
 by mta-13.privateemail.com (Postfix) with ESMTPA id 4944918000A4;
 Mon, 13 Jun 2022 15:45:28 -0400 (EDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=dominicm.dev;
 s=default; t=1655149531;
 bh=xbpaVnWVLmNsgeOn/kwn01YC+8eYPstmUM7Jm2cWv9g=;
 h=References:From:To:Cc:Subject:Date:In-reply-to:From;
 b=fEP04RkCsB8QK5Pv1gLvEupxEcd9U2bfIktPwfHNineB5HDOh3W4ionQZnTf/XJ0b
 s+P4tszGdZRYHYZywGQ7+qoZJ2hF2VJFBhgKGaQOUzr43Hgg+9t5T78+ORCKagiTrl
 gM8Ehwq2rVgOBDGrhrsFYn4KrWMX2Y5djmBNM8xyCDo6XAq1s1UkBFK35mHqllOB42
 WFxXg80B1kIq/3Fo8Z+VPEGtkKZF1nlMohzEulrxCmAgSFACBT0Mr6Wz0PmWk33T33
 snEPU1mKztvX6RanW1xjjdTi3hb79AxJCNQCPkr2NDCp7nv5q1XblQL0OjFpSIqnmZ
 /uWDmrRFpLg5Q==
References: <05b8334e-8ecb-1373-97b3-10b8617ed3c8@univ-rouen.fr>
 <490A4062-75F7-4919-803D-47E98DF9421C@lepiller.eu>
 <85258fe5-a220-41c6-d153-86de8c6bd57e@univ-rouen.fr>
 <34587fa7-652f-19a0-3006-aa3e707b13fb@univ-rouen.fr>
 <357B4763-2DA0-4255-9E58-B882E8ED1A9A@lepiller.eu>
 <36a809b0-6d5a-2f29-4c5f-07a418e05cbd@univ-rouen.fr>
 <441E1AD5-DFC9-4BBD-A45C-8328B51BE8D6@lepiller.eu>
 <635b0475-0134-acb4-8245-afcb571327a0@univ-rouen.fr>
 <87ee0s62m7.fsf@ruhr-uni-bochum.de>
 <481369ed-182c-000c-5927-f8879503cc39@univ-rouen.fr>
 <877d6k5yf7.fsf@ruhr-uni-bochum.de>
 <aa4501b7-7035-128d-429b-ea09db7780a1@univ-rouen.fr>
 <87pmkc4g8z.fsf@ruhr-uni-bochum.de>
 <2e112f4a-980c-f3fb-167f-624914a71384@univ-rouen.fr>
 <87zgj56rm6.fsf@dominicm.dev>
 <320be96c-d9d9-2a4f-dc83-ba072607e22d@univ-rouen.fr>
 <743026325.776697.1655062339837@ichabod.co-bxl>
User-agent: mu4e 1.6.11; emacs 28.1
From: Dominic Martinez <dom@dominicm.dev>
To: sebastien rey-coyrehourcq <sebastien.rey-coyrehourcq@univ-rouen.fr>
Cc: Daniel =?utf-8?Q?Mei=C3=9Fner?= <daniel.meissner-i4k@ruhr-uni-bochum.de>,
 help-guix@gnu.org, Julien Lepiller <julien@lepiller.eu>
Subject: Re: Guix home, guix system, channels, some noob questions
Date: Mon, 13 Jun 2022 15:31:47 -0400
In-reply-to: <743026325.776697.1655062339837@ichabod.co-bxl>
Message-ID: <87leu073fs.fsf@dominicm.dev>
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-=";
 micalg=pgp-sha256; protocol="application/pgp-signature"
X-Virus-Scanned: ClamAV using ClamSMTP
Received-SPF: pass client-ip=198.54.127.109; envelope-from=dom@dominicm.dev;
 helo=MTA-13-4.privateemail.com
X-Spam_score_int: -20
X-Spam_score: -2.1
X-Spam_bar: --
X-Spam_report: (-2.1 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1,
 DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1,
 RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001,
 T_SCC_BODY_TEXT_LINE=-0.01 autolearn=ham autolearn_force=no
X-Spam_action: no action
X-BeenThere: help-guix@gnu.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <help-guix.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/help-guix>,
 <mailto:help-guix-request@gnu.org?subject=unsubscribe>
List-Archive: <https://lists.gnu.org/archive/html/help-guix>
List-Post: <mailto:help-guix@gnu.org>
List-Help: <mailto:help-guix-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/help-guix>,
 <mailto:help-guix-request@gnu.org?subject=subscribe>
Errors-To: help-guix-bounces+larch=yhetil.org@gnu.org
Sender: "Help-Guix" <help-guix-bounces+larch=yhetil.org@gnu.org>
X-Migadu-Flow: FLOW_IN
X-Migadu-To: larch@yhetil.org
X-Migadu-Country: US
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org;
	s=key1; t=1655149567;
	h=from:from:sender:sender:reply-to:subject:subject:date:date:
	 message-id:message-id:to:to:cc:cc:mime-version:mime-version:
	 content-type:content-type:in-reply-to:in-reply-to:
	 references:references:list-id:list-help:list-unsubscribe:
	 list-subscribe:list-post:dkim-signature;
	bh=zvRlpTfQdwT6OvXUoQqwHnCN+Mi36CwiVFb0gFzXHm4=;
	b=dMp5U7u9yBOYqXjk8vi1mrBMxN1n7xuUgmsVw1awN5gqjC6XXNqulivawAqReJ/BUc6ed6
	6oDxifjlaJ+EG88MnMQWnWXfXNM+FP0XjvvgHbySiiAxCiUOU/bjayz/kWQJ/DOb9j5Fyu
	sCQSnwE0vo759CCq06FE0oHL/VvO/gq6tjUFFZlocX2tvRkPCiBfgphgzQbgSiYp53TeC6
	GQuRN5KxM/Js5jqrIH8SpaPlU3Dtz40vnQp0mhfqjJfn1yBFpFsJ40zKtrlLHmZe17A6Zt
	8UYAlJMQovvMvDaCLo6iVPVU+pqheiQ/xuf7ztLZquOARhy+7I60JlOE6pa1vQ==
ARC-Seal: i=1; s=key1; d=yhetil.org; t=1655149567; a=rsa-sha256; cv=none;
	b=AJVoQHB3ZBb9ypaGuB9CtDMqCT2W3ZwvyOd7JxaVIgzJnI1IXNCFauxVr9ok4TtGSLsWAR
	dBOLAa/lfYZTP/4HHLm5+UFjlRYNYIf0dtqfLLBAEGt04w2RHVTsgzeMD0hc12eY7G0Cyt
	51xn9c5cj3jz666OP+Yto9VbB2hbcNhf9hwL3BN24/HzXJ6O1imzp7aYUuSf+LhUuizYL+
	lB2KoT5Xnah5Y+vP39GyODTzAyN4yoq1GdBTIPXCe2k5U2t3Z1yH2jL1+vCyoeXo0kC4N5
	uuoLmm7yOIAOXMnGKR0ii02fhb6WFLD4MZ/OIRhVQeF5+1xrqO6PZq/ceeyLKw==
ARC-Authentication-Results: i=1;
	aspmx1.migadu.com;
	dkim=fail ("headers rsa verify failed") header.d=dominicm.dev header.s=default header.b=fEP04RkC;
	dmarc=none;
	spf=pass (aspmx1.migadu.com: domain of "help-guix-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="help-guix-bounces+larch=yhetil.org@gnu.org"
X-Migadu-Spam-Score: -0.89
Authentication-Results: aspmx1.migadu.com;
	dkim=fail ("headers rsa verify failed") header.d=dominicm.dev header.s=default header.b=fEP04RkC;
	dmarc=none;
	spf=pass (aspmx1.migadu.com: domain of "help-guix-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="help-guix-bounces+larch=yhetil.org@gnu.org"
X-Migadu-Queue-Id: BE7E816242
X-Spam-Score: -0.89
X-Migadu-Scanner: scn1.migadu.com
X-TUID: dEQWF/6sPt1O

--=-=-=
Content-Type: text/plain; format=flowed


sebastien rey-coyrehourcq 
<sebastien.rey-coyrehourcq@univ-rouen.fr> writes:

> Hi,
>
> I jump into guile world by learning and copy/pasting Dominic 
> Martinez config :)

Nice to know my config helped someone! Sorry it's a bit of a mess, 
I didn't really document anything.

> Everything going pretty well but now i'm blocked with yubikey 
> configuration.
>
> And without yubikey that contain your only private key to 
> sign/decrypt everything, that's a
> little complicated ...
>
> Running "gpg --card-status" my yubikey is correclty 
> detected. That a good news ... BUT
> that's all,
> other command don't work, for example both :
>
> gpg --list-secret-keys
> gpg --list-keys

When you say it doesn't work, do you mean it doesn't list any 
keys? If you have keys on your Yubikey that you used with GPG on a 
different system, you'll have to re-export the key stubs for GPG 
to use the Yubikey for authentication (see 
https://github.com/drduh/YubiKey-Guide#switching-between-two-or-more-yubikeys).

If you're getting other errors, you might need to enable some 
system services. For instance, you need the pcscd service 
(https://guix.gnu.org/manual/devel/en/guix.html#index-pcscd), and 
also the udev rules appropriate for your Yubikey model 
(https://github.com/Yubico/libfido2/blob/main/udev/70-u2f.rules). The 
below snippet should get all Yubikey functionality working:

#+begin_src scheme
(service pcscd-service-type)
(udev-rules-service 'yubikey-rules
                     (udev-rule
                      "70-u2f.rules"
                      (string-append
                       ;; All keys
                       "ACTION!=\"add|change\", 
                       GOTO=\"u2f_end\"\n"
                       ;; Yubikey
                       "KERNEL==\"hidraw*\", "
                       "SUBSYSTEM==\"hidraw\", "
                       "ATTRS{idVendor}==\"1050\", "
                        "ATTRS{idProduct}==\"0113|0114|0115|0116|0120|0121|0200|0402|0403|0406|0407|0410\", 
                        "
                       "TAG+=\"uaccess\", MODE=\"0660\"\n"
                       ;; End all keys
                       "LABEL=\"u2f_end\"")))
#+end_src

--=-=-=
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----

iHUEARYIAB0WIQRtp6gAxeTcYmhxQ/1Bnl1fEVBrXQUCYqeT1wAKCRBBnl1fEVBr
XYYUAP9IzzCR5KpVFKK0waIPlhd3IF5uafsLo8ExPU+D2d6rVQD/fpFPR/3h5KG1
+KdUrqXlnfWykHeUDUiL9KJmGvc0rQw=
=QO6H
-----END PGP SIGNATURE-----
--=-=-=--