summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorJoey Hess2020-05-01 16:47:23 -0400
committerJoey Hess2020-05-01 16:47:23 -0400
commit560a927623040edf1534de302f3101ea9539c354 (patch)
treea2acfcf558a5f105f312f8749b6d71c03ec3d3fc
parent9f65d461ed73ae95b1d072d203fa3b2c1fa8ddfe (diff)
parent32ef3338e835a87bb42c8b354ac51e2bb5d4bf33 (diff)
Merge remote-tracking branch 'origin/master'
-rw-r--r--doc/forum/Branch_not_signed_with_trusted_gpg_key_warning.mdwn79
-rw-r--r--doc/forum/DNS_for_LAN.mdwn1
2 files changed, 80 insertions, 0 deletions
diff --git a/doc/forum/Branch_not_signed_with_trusted_gpg_key_warning.mdwn b/doc/forum/Branch_not_signed_with_trusted_gpg_key_warning.mdwn
new file mode 100644
index 00000000..48c84b3a
--- /dev/null
+++ b/doc/forum/Branch_not_signed_with_trusted_gpg_key_warning.mdwn
@@ -0,0 +1,79 @@
+When I `propellor --spin HOST`, I started to get this warning:
+
+```
+** warning: git branch origin/master is not signed with a trusted gpg key; refusing to deploy it! (Running with previous configuration instead.)
+```
+
+Here's the relevant output from propellor:
+
+```
+Preprocessing library for propellor-5.9.1..
+Building library for propellor-5.9.1..
+Preprocessing executable 'propellor-config' for propellor-5.9.1..
+Building executable 'propellor-config' for propellor-5.9.1..
+Propellor build ... done
+[master ee86ede9] propellor spin
+Git commit ... done
+Enumerating objects: 1, done.
+Counting objects: 100% (1/1), done.
+Writing objects: 100% (1/1), 869 bytes | 869.00 KiB/s, done.
+Total 1 (delta 0), reused 0 (delta 0)
+To [redacted].com:sr/propellor.git
+ ed5038fa..ee86ede9 master -> master
+Push to central git repository ... done
+gpg: encrypted with 4096-bit RSA key, ID 0x[redacted]0F5, created 2016-09-06
+ "Siddharth Ravikumar <[redacted]@[redacted].com>"
+From [redacted].com:sr/propellor
+ ed5038fa..ee86ede9 master -> origin/master
+Pull from central git repository ... done
+gpg: Signature made Thu Apr 9 09:09:25 2020 EDT
+gpg: using RSA key [redacted]
+gpg: /usr/local/propellor/privdata/trustdb.gpg: trustdb created
+gpg: Good signature from "Siddharth Ravikumar <[redacted]@[redacted].com>" [expired]
+gpg: Note: This key has expired!
+Primary key fingerprint: [redacted]
+gpg: Signature expires Fri Apr 9 09:09:25 2021 EDT
+** warning: git branch origin/master is not signed with a trusted gpg key; refusing to deploy it! (Running with previous configuration instead.)
+Sending privdata (5352 bytes) to cygnus.[redacted].net ... done
+From .
+ * branch HEAD -> FETCH_HEAD
+Sending git update to cygnus.[redacted].net ... done
+Pull from central git repository ... done
+gpg: Signature made Thu Apr 9 09:09:25 2020 EDT
+gpg: using RSA key [redacted]
+gpg: /usr/local/propellor/privdata/trustdb.gpg: trustdb created
+gpg: Good signature from "Siddharth Ravikumar <[redacted]@[redacted].com>" [expired]
+gpg: Note: This key has expired!
+Primary key fingerprint: [redacted]
+gpg: Signature expires Fri Apr 9 09:09:25 2021 EDT
+** warning: git branch origin/master is not signed with a trusted gpg key; refusing to deploy it! (Running with previous configuration instead.)
+Preprocessing library for propellor-5.9.1..
+Building library for propellor-5.9.1..
+Preprocessing executable 'propellor-config' for propellor-5.9.1..
+Building executable 'propellor-config' for propellor-5.9.1..
+Propellor build ... done
+cygnus.[redacted].net has Operating System (Debian Linux (Stable "buster")) X86_64 ... ok
+cygnus.[redacted].net standard sources.list ... ok
+
+```
+
+
+The gpg key in question is not expired and the secret key for it is available on the machine from where I'm doing `propellor --spin`:
+
+
+```
+ gpg --edit-key '[fpr redacted]'
+Secret key is available.
+
+sec rsa4096/0x[redacted]
+ created: 2016-09-06 expires: 2020-09-02 usage: SC
+ trust: ultimate validity: ultimate
+ssb rsa4096/0x[redacted]
+ created: 2016-09-06 expires: 2020-09-02 usage: E
+[ultimate] (1). Siddharth Ravikumar <[redacted]@[redacted].com>
+[ultimate] (2) Siddharth Ravikumar <[redacted]@[redacted].com>
+
+```
+
+Any idea why I'm getting the warning about the branch not signed with a trusted a gpg key. How should I resolve this issue?
+
diff --git a/doc/forum/DNS_for_LAN.mdwn b/doc/forum/DNS_for_LAN.mdwn
new file mode 100644
index 00000000..da899e9e
--- /dev/null
+++ b/doc/forum/DNS_for_LAN.mdwn
@@ -0,0 +1 @@
+I'd like to setup DNS for hosts on my LAN (mainly for running propellor). I already have dnsmasq installed to support libvirt. Should I just use dnsmasq, or is there some other thing nicely integrated with propellor?