From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mp2 ([2001:41d0:2:4a6f::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by ms11 with LMTPS id e4+lASKWCGAkTgAA0tVLHw (envelope-from ) for ; Wed, 20 Jan 2021 20:44:18 +0000 Received: from aspmx1.migadu.com ([2001:41d0:2:4a6f::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by mp2 with LMTPS id QKmNOCGWCGAYIQAAB5/wlQ (envelope-from ) for ; Wed, 20 Jan 2021 20:44:17 +0000 Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by aspmx1.migadu.com (Postfix) with ESMTPS id 6D16C9402A2 for ; Wed, 20 Jan 2021 20:44:13 +0000 (UTC) Received: from localhost ([::1]:52570 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1l2KKp-0000X3-22 for larch@yhetil.org; Wed, 20 Jan 2021 15:44:11 -0500 Received: from eggs.gnu.org ([2001:470:142:3::10]:33634) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1l2KKh-0000Wv-7K for bug-guix@gnu.org; Wed, 20 Jan 2021 15:44:03 -0500 Received: from debbugs.gnu.org ([209.51.188.43]:44798) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1l2KKh-0002gC-02 for bug-guix@gnu.org; Wed, 20 Jan 2021 15:44:03 -0500 Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1l2KKg-0001Dv-Um for bug-guix@gnu.org; Wed, 20 Jan 2021 15:44:02 -0500 X-Loop: help-debbugs@gnu.org Subject: bug#45911: authorized-fields is not/badly documented Resent-From: raingloom Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Wed, 20 Jan 2021 20:44:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 45911 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: Julien Lepiller Received: via spool by 45911-submit@debbugs.gnu.org id=B45911.16111753934612 (code B ref 45911); Wed, 20 Jan 2021 20:44:02 +0000 Received: (at 45911) by debbugs.gnu.org; 20 Jan 2021 20:43:13 +0000 Received: from localhost ([127.0.0.1]:56342 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1l2KJt-0001CK-80 for submit@debbugs.gnu.org; Wed, 20 Jan 2021 15:43:13 -0500 Received: from mx1.riseup.net ([198.252.153.129]:54468) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1l2KJq-0001CB-V5 for 45911@debbugs.gnu.org; Wed, 20 Jan 2021 15:43:12 -0500 Received: from fews1.riseup.net (unknown [10.0.1.83]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (Client CN "*.riseup.net", Issuer "Sectigo RSA Domain Validation Secure Server CA" (not verified)) by mx1.riseup.net (Postfix) with ESMTPS id 4DLct21bSyzDsc6; Wed, 20 Jan 2021 12:43:06 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=riseup.net; s=squak; t=1611175388; bh=/kzZEN6s2v9f68VSEFY7cl1rM3pKAE0b+XlR7+PKIRs=; h=Date:From:To:Cc:Subject:In-Reply-To:References:From; b=RlAOWgWkoFbfn2qymD/Cli0Vg20FwT3tQV/F/Bi+LcSKnbLPTkn73QWahd81nQPwc rhIdObYxvVZnNlfSH9ab+WgrwCvKQ1VII2zsLz9Xcw5fk+aEKLXQeK/l2PZ2Tec8AS RAiKgyQVcDIEmDC7BSecwoyXtvdeE7DatuR6M7pM= X-Riseup-User-ID: BDE7016984C4CF3A619EFB491B5C94985E118482BE98172832888363E403258C Received: from [127.0.0.1] (localhost [127.0.0.1]) by fews1.riseup.net (Postfix) with ESMTPSA id 4DLcss64ZMz5wTB; Wed, 20 Jan 2021 12:42:54 -0800 (PST) Date: Wed, 20 Jan 2021 21:34:11 +0100 From: raingloom Message-ID: <20210120213411.3420d912@riseup.net> In-Reply-To: <08BFBF88-A677-47CE-9859-3B2FC33442F6@lepiller.eu> References: <20210116041615.27cfa112@riseup.net> <87o8hpbee0.fsf@elephly.net> <20210117013449.1192d841@riseup.net> <08BFBF88-A677-47CE-9859-3B2FC33442F6@lepiller.eu> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-BeenThere: bug-guix@gnu.org List-Id: Bug reports for GNU Guix List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Cc: 45911@debbugs.gnu.org Errors-To: bug-guix-bounces+larch=yhetil.org@gnu.org Sender: "bug-Guix" X-Migadu-Flow: FLOW_IN X-Migadu-Spam-Score: -1.25 Authentication-Results: aspmx1.migadu.com; dkim=fail ("headers rsa verify failed") header.d=riseup.net header.s=squak header.b=RlAOWgWk; dmarc=fail reason="SPF not aligned (relaxed)" header.from=riseup.net (policy=none); spf=pass (aspmx1.migadu.com: domain of bug-guix-bounces@gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=bug-guix-bounces@gnu.org X-Migadu-Queue-Id: 6D16C9402A2 X-Spam-Score: -1.25 X-Migadu-Scanner: scn1.migadu.com X-TUID: NRq47JlHMqVr On Sat, 16 Jan 2021 22:24:16 -0500 Julien Lepiller wrote: > Actually, here's how I use it: > https://framagit.org/tyreunom/system-configuration/-/blob/master/systems/= tachikoma.scm#L69 >=20 > And the key file is the one generated by guix, unmodified: > https://framagit.org/tyreunom/system-configuration/-/blob/master/keys/xan= a.pub >=20 > Le 16 janvier 2021 19:34:49 GMT-05:00, raingloom > a =C3=A9crit : > >On Sat, 16 Jan 2021 07:10:47 +0100 > >Ricardo Wurmus wrote: > > =20 > >> raingloom writes: > >> =20 > >> > guix archive --authorize started issuing a warning some time ago > >> > pointing to "authorized-keys" in "operating-system". > >> > > >> > * that is not a valid field of operating-system =20 > >>=20 > >> That=E2=80=99s right. It=E2=80=99s a field of guix-configuration, whi= ch is =20 > >documented =20 > >> in 10.8.1 Base Services. > >> =20 > > > >Thanks, I found that out already, that's how I ran into the other > >issues. > >I'm still confused about what the proper way to store the config info > >is. Like how I should even store it as Scheme source code. =20 Thanks, guess I'll go down the file route for now, but this is an unsatisfactory solution IMHO. What if you have multiple keys, or want to only include a subset of keys in a given machine? Having to use a file object to store a sexp is an odd choice when every other part of Guix tries as hard as it can to use sexps and Scheme data structures for configuration. If no one wants to fix it, mind if I give it a go?