From 8e2b6fc007ada67174edca9d7ce2c1c3a859d733 Mon Sep 17 00:00:00 2001 From: david Date: Fri, 21 Aug 2020 23:51:40 +0000 Subject: Added a comment --- .../comment_2_be582d804ba16e6acd3998eaf3eadb56._comment | 8 ++++++++ 1 file changed, 8 insertions(+) create mode 100644 doc/forum/propellor_can__39__t_find_privdata_for_gpg_pubkey/comment_2_be582d804ba16e6acd3998eaf3eadb56._comment diff --git a/doc/forum/propellor_can__39__t_find_privdata_for_gpg_pubkey/comment_2_be582d804ba16e6acd3998eaf3eadb56._comment b/doc/forum/propellor_can__39__t_find_privdata_for_gpg_pubkey/comment_2_be582d804ba16e6acd3998eaf3eadb56._comment new file mode 100644 index 00000000..bffa29c1 --- /dev/null +++ b/doc/forum/propellor_can__39__t_find_privdata_for_gpg_pubkey/comment_2_be582d804ba16e6acd3998eaf3eadb56._comment @@ -0,0 +1,8 @@ +[[!comment format=mdwn + username="david" + avatar="http://cdn.libravatar.org/avatar/22c2d800db6a7699139df604a67cb221" + subject="comment 2" + date="2020-08-21T23:51:40Z" + content=""" +In this case it's both the same host, but I don't think that's important. I'm just saying that propellor --dump verifies the local copy has the privdata, and I verified by checksums that the remote (host being managed) privdata blob is the same. +"""]] -- cgit v1.2.3 From 424216d3d3dbb6cc37c2c090ecb35b878efdef27 Mon Sep 17 00:00:00 2001 From: Nicolas.Schodet Date: Sat, 22 Aug 2020 13:23:02 +0000 Subject: Added a comment --- .../comment_2_a26137bda29948fa501c8a52b8df673c._comment | 10 ++++++++++ 1 file changed, 10 insertions(+) create mode 100644 doc/todo/Add_Borg.UseUmask/comment_2_a26137bda29948fa501c8a52b8df673c._comment diff --git a/doc/todo/Add_Borg.UseUmask/comment_2_a26137bda29948fa501c8a52b8df673c._comment b/doc/todo/Add_Borg.UseUmask/comment_2_a26137bda29948fa501c8a52b8df673c._comment new file mode 100644 index 00000000..9e0d8453 --- /dev/null +++ b/doc/todo/Add_Borg.UseUmask/comment_2_a26137bda29948fa501c8a52b8df673c._comment @@ -0,0 +1,10 @@ +[[!comment format=mdwn + username="Nicolas.Schodet" + avatar="http://cdn.libravatar.org/avatar/0d7ec808ec329d04ee9a93c0da3c0089" + subject="comment 2" + date="2020-08-22T13:23:01Z" + content=""" +Branch is updated. + +I also rebased on 5.11. +"""]] -- cgit v1.2.3 From dba0f85e99ecff7b166fd94795fc0f376c2df8ee Mon Sep 17 00:00:00 2001 From: david Date: Sat, 22 Aug 2020 15:08:16 +0000 Subject: Added a comment --- ...ent_3_51eff7a4898830a1adaa30da2b311c41._comment | 23 ++++++++++++++++++++++ 1 file changed, 23 insertions(+) create mode 100644 doc/forum/propellor_can__39__t_find_privdata_for_gpg_pubkey/comment_3_51eff7a4898830a1adaa30da2b311c41._comment diff --git a/doc/forum/propellor_can__39__t_find_privdata_for_gpg_pubkey/comment_3_51eff7a4898830a1adaa30da2b311c41._comment b/doc/forum/propellor_can__39__t_find_privdata_for_gpg_pubkey/comment_3_51eff7a4898830a1adaa30da2b311c41._comment new file mode 100644 index 00000000..2e948dd0 --- /dev/null +++ b/doc/forum/propellor_can__39__t_find_privdata_for_gpg_pubkey/comment_3_51eff7a4898830a1adaa30da2b311c41._comment @@ -0,0 +1,23 @@ +[[!comment format=mdwn + username="david" + avatar="http://cdn.libravatar.org/avatar/22c2d800db6a7699139df604a67cb221" + subject="comment 3" + date="2020-08-22T15:08:16Z" + content=""" +In this special case I don't really need privData, I worked around it by running `gpg`. +I'm not sure if my usecase is common enough to warrant extending `Propellor.Property.Gpg` + +[[!format haskell \"\"\" + & Cmd.cmdProperty \"gpg\" [ \"--output\" + , debugMeKeyFile + , \"--batch\" + , \"--yes\" + , \"--export\" + , \"7A18807F100A4570C59684207E4E65C8720B706B\" + ] + `changesFile` debugMeKeyFile + `requires` rootGpg + +\"\"\"]] + +"""]] -- cgit v1.2.3 From 8d31a859419f3838f3af7e70f0606b687f2cee89 Mon Sep 17 00:00:00 2001 From: david Date: Sat, 22 Aug 2020 17:02:41 +0000 Subject: Added a comment --- ...ent_4_4a0432687efa5b83e4cfefecdb355188._comment | 26 ++++++++++++++++++++++ 1 file changed, 26 insertions(+) create mode 100644 doc/forum/propellor_can__39__t_find_privdata_for_gpg_pubkey/comment_4_4a0432687efa5b83e4cfefecdb355188._comment diff --git a/doc/forum/propellor_can__39__t_find_privdata_for_gpg_pubkey/comment_4_4a0432687efa5b83e4cfefecdb355188._comment b/doc/forum/propellor_can__39__t_find_privdata_for_gpg_pubkey/comment_4_4a0432687efa5b83e4cfefecdb355188._comment new file mode 100644 index 00000000..a2688611 --- /dev/null +++ b/doc/forum/propellor_can__39__t_find_privdata_for_gpg_pubkey/comment_4_4a0432687efa5b83e4cfefecdb355188._comment @@ -0,0 +1,26 @@ +[[!comment format=mdwn + username="david" + avatar="http://cdn.libravatar.org/avatar/22c2d800db6a7699139df604a67cb221" + subject="comment 4" + date="2020-08-22T17:02:41Z" + content=""" +OK, I belatedly see what you mean. It's not relevant if the remote privdata.gpg blob matches or not, since iiuc, only the local one is used by --spin. + +I'm having a similar issue with `Property.Gpg.keyImported`. + +[[!format text \"\"\" +** warning: Missing privdata GpgKey (for 815B63982A79F8E7C72786C4762B57BB784206AD) +Fix this by running: + propellor --set 'GpgKey' '815B63982A79F8E7C72786C4762B57BB784206AD' \ + < (Either a gpg public key, exported with gpg --export -a, or a gpg private key, exported with gpg --export-secret-key -a) + +cs2613 root has gpg key \"815B63982A79F8E7C72786C4762B57BB784206AD\" ... failed +** warning: Missing privdata GpgKey (for 7A18807F100A4570C59684207E4E65C8720B706B) +Fix this by running: + propellor --set 'GpgKey' '7A18807F100A4570C59684207E4E65C8720B706B' \ + < (Either a gpg public key, exported with gpg --export -a, or a gpg private key, exported with gpg --export-secret-key -a) +\"\"\"]] + +Of course I did what propellor suggests, but it doesn't seem to make a difference. Is it possible gpg armoured text is being treated specially as privdata? + +"""]] -- cgit v1.2.3 From 6599473f643a36fd5da1815ebe04c9a50295cada Mon Sep 17 00:00:00 2001 From: david Date: Sat, 22 Aug 2020 20:13:08 +0000 Subject: Added a comment --- ...ent_5_2678027d2a3cf08cd977495d0b0afe91._comment | 30 ++++++++++++++++++++++ 1 file changed, 30 insertions(+) create mode 100644 doc/forum/propellor_can__39__t_find_privdata_for_gpg_pubkey/comment_5_2678027d2a3cf08cd977495d0b0afe91._comment diff --git a/doc/forum/propellor_can__39__t_find_privdata_for_gpg_pubkey/comment_5_2678027d2a3cf08cd977495d0b0afe91._comment b/doc/forum/propellor_can__39__t_find_privdata_for_gpg_pubkey/comment_5_2678027d2a3cf08cd977495d0b0afe91._comment new file mode 100644 index 00000000..dde10ae4 --- /dev/null +++ b/doc/forum/propellor_can__39__t_find_privdata_for_gpg_pubkey/comment_5_2678027d2a3cf08cd977495d0b0afe91._comment @@ -0,0 +1,30 @@ +[[!comment format=mdwn + username="david" + avatar="http://cdn.libravatar.org/avatar/22c2d800db6a7699139df604a67cb221" + subject="comment 5" + date="2020-08-22T20:13:07Z" + content=""" +In answer to my own question, it's not related to the content. +Here we can see a PrivFile has content: +[[!format text \"\"\" +╭─ convex:~/.propellor +╰─ (git)-[master]-% propellor --dump 'PrivFile \"/root/foo\"' 'any' +[2020-08-22 16:57:32 ADT] command line: Dump (PrivFile \"/root/foo\") (Context \"any\") +[2020-08-22 16:57:32 ADT] read: git [\"config\",\"gpg.program\"] +[2020-08-22 16:57:32 ADT] process done ExitFailure 1 +[2020-08-22 16:57:32 ADT] chat: gpg [\"--decrypt\",\"privdata/privdata.gpg\"] +gpg: encrypted with 4096-bit RSA key, ID 70E3C0DE87068451, created 2019-06-08 + \"David Bremner \" +[2020-08-22 16:57:33 ADT] process done ExitSuccess +sekrit +\"\"\"]] +On the other hand, when running `propellor --spin convex.local` I get +[[!format text \"\"\" +** warning: Missing privdata PrivFile \"/root/foo\" (for any) +Fix this by running: + propellor --set 'PrivFile \"/root/foo\"' 'any' \ + < /root/foo +\"\"\"]] + +I tried with a different workstation, spinning itself, and the same machine as above (\"convex\"), with the same results. +"""]] -- cgit v1.2.3 From 35b1d1122817467577cc6c107aac4c7abcc64347 Mon Sep 17 00:00:00 2001 From: david Date: Sun, 23 Aug 2020 02:22:07 +0000 Subject: Added a comment --- .../comment_6_c526880fa0d866511c0ffecc6f90fcdf._comment | 8 ++++++++ 1 file changed, 8 insertions(+) create mode 100644 doc/forum/propellor_can__39__t_find_privdata_for_gpg_pubkey/comment_6_c526880fa0d866511c0ffecc6f90fcdf._comment diff --git a/doc/forum/propellor_can__39__t_find_privdata_for_gpg_pubkey/comment_6_c526880fa0d866511c0ffecc6f90fcdf._comment b/doc/forum/propellor_can__39__t_find_privdata_for_gpg_pubkey/comment_6_c526880fa0d866511c0ffecc6f90fcdf._comment new file mode 100644 index 00000000..fa241e4b --- /dev/null +++ b/doc/forum/propellor_can__39__t_find_privdata_for_gpg_pubkey/comment_6_c526880fa0d866511c0ffecc6f90fcdf._comment @@ -0,0 +1,8 @@ +[[!comment format=mdwn + username="david" + avatar="http://cdn.libravatar.org/avatar/22c2d800db6a7699139df604a67cb221" + subject="comment 6" + date="2020-08-23T02:22:06Z" + content=""" +I confirmed that privdata is being transmitted, but that my test file is not. The resulting `/usr/local/propellor/privdata/local` file is not obviously corrupted, but does not contain the string \"/root/foo\". The file \"/root/foo\" also does not show as used anywhere in the output of `propellor --list-fields`. I'm not sure if that is surprising or not. +"""]] -- cgit v1.2.3 From 7b2c005f0e9d63fa92a9fb6ccdf4e2311bc303cd Mon Sep 17 00:00:00 2001 From: jsza Date: Mon, 24 Aug 2020 13:06:47 +0000 Subject: Added a comment --- ...ent_9_7f8f6e688efeb9a454a3f82777c2743b._comment | 38 ++++++++++++++++++++++ 1 file changed, 38 insertions(+) create mode 100644 doc/todo/spin_without_remote_compilation/comment_9_7f8f6e688efeb9a454a3f82777c2743b._comment diff --git a/doc/todo/spin_without_remote_compilation/comment_9_7f8f6e688efeb9a454a3f82777c2743b._comment b/doc/todo/spin_without_remote_compilation/comment_9_7f8f6e688efeb9a454a3f82777c2743b._comment new file mode 100644 index 00000000..f2db3de5 --- /dev/null +++ b/doc/todo/spin_without_remote_compilation/comment_9_7f8f6e688efeb9a454a3f82777c2743b._comment @@ -0,0 +1,38 @@ +[[!comment format=mdwn + username="jsza" + avatar="http://cdn.libravatar.org/avatar/72c6bc8c0cdfb0fff175e90c3b036415" + subject="comment 9" + date="2020-08-24T13:06:47Z" + content=""" +Hi, I'm trying to spin using the `Precompiled.precompiled` property from the `precompiled`, branch after having merged master. The first time trying to spin after adding the property, this error occurs: + + > ./propellor --spin host_redacted + Build profile: -w ghc-8.8.4 -O1 + In order, the following will be built (use -v for more details): + - propellor-5.11 (exe:propellor-config) (file executables/propellor-config.hs changed) + Preprocessing executable 'propellor-config' for propellor-5.11.. + Building executable 'propellor-config' for propellor-5.11.. + [1 of 1] Compiling Main ( executables/propellor-config.hs, /home/jayess/propellor/dist-newstyle/build/x86_64-linux/ghc-8.8.4/propellor-5.11/x/propellor-config/build/propellor-config/propellor-config- + tmp/Main.o ) + Linking /home/jayess/propellor/dist-newstyle/build/x86_64-linux/ghc-8.8.4/propellor-5.11/x/propellor-config/build/propellor-config/propellor-config ... + Propellor build ... done + + ldd: bin/propellor: No such file or directory + propellor: user error (ldd [\"bin/propellor\"] exited 1) + + +Subsequent spin attempts produce this error: + + > ./propellor --spin us4.tempus.xyz + Up to date + Propellor build ... done + + cp: cannot stat '/home/jayess/propellor/propellor (deleted)': No such file or directory + ** error: failed copying in propellor + propellor: Cannot continue! + CallStack (from HasCallStack): + error, called at src/Propellor/Message.hs:143:9 in propellor-5.11-inplace:Propellor.Message + +I think `Propellor.Spin.sendPrecompiled` might itself be broken, but I can't quite wrap my head around what's going on here. Any ideas? I'm using `cabal 3.0.0.0` in Debian Unstable. + +"""]] -- cgit v1.2.3