emacs-bug-tracker
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[debbugs-tracker] bug#36844: closed ([PATCH] doc: Add note about signing

From: GNU bug Tracking System
Subject: [debbugs-tracker] bug#36844: closed ([PATCH] doc: Add note about signing keys.)
Date: Tue, 06 Aug 2019 19:33:03 +0000 
Your message dated Tue, 06 Aug 2019 15:32:03 -0400
with message-id <address@hidden>
and subject line Re: [bug#36844] [PATCH] doc: Add note about signing keys.
has caused the debbugs.gnu.org bug report #36844,
regarding [PATCH] doc: Add note about signing keys.
to be marked as done.

(If you believe you have received this mail in error, please contact
address@hidden.)


-- 
36844: http://debbugs.gnu.org/cgi/bugreport.cgi?bug=36844
GNU Bug Tracking System
Contact address@hidden with problems
--- Begin Message --- Subject: [PATCH] doc: Add note about signing keys. Date: Mon, 29 Jul 2019 18:36:01 -0400 User-agent: Gnus/5.13 (Gnus v5.13) Emacs/26.2 (gnu/linux) 
* doc/guix.texi (Invoking guix deploy): Add note explaining that
deployment targets must authorize the coordinator machine's signing key.
---
 doc/guix.texi | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/doc/guix.texi b/doc/guix.texi
index ccc36a8a97..efed08d8fa 100644
--- a/doc/guix.texi
+++ b/doc/guix.texi
@@ -25527,6 +25527,22 @@ complex deployment may involve, for example, starting 
virtual machines through
 a Virtual Private Server (VPS) provider.  In such a case, a different
 @var{environment} type would be used.
 
+Do note that you first need to generate a key pair on the coordinator machine
+to allow the daemon to export signed archives of files from the store
+(@pxref{Invoking guix archive}).
+
+@example
+# guix archive --generate-key
+@end example
+
+@noindent
+Each target machine must authorize the key of the master machine so that it
+accepts store items it receives from the coordinator:
+
+@example
+# guix archive --authorize < coordinator-public-key.txt
+@end example
+
 @deftp {Data Type} machine
 This is the data type representing a single machine in a heterogeneous Guix
 deployment.
-- 
2.22.0

Attachment: signature.asc
Description: PGP signature


--- End Message ---
--- Begin Message --- Subject: Re: [bug#36844] [PATCH] doc: Add note about signing keys. Date: Tue, 06 Aug 2019 15:32:03 -0400 User-agent: mu4e 1.2.0; emacs 26.2 
Looks good.  Merged & pushed.

Jakob L. Kreuze writes:

> * doc/guix.texi (Invoking guix deploy): Add note explaining that
> deployment targets must authorize the coordinator machine's signing key.
> ---
>  doc/guix.texi | 16 ++++++++++++++++
>  1 file changed, 16 insertions(+)
>
> diff --git a/doc/guix.texi b/doc/guix.texi
> index ccc36a8a97..efed08d8fa 100644
> --- a/doc/guix.texi
> +++ b/doc/guix.texi
> @@ -25527,6 +25527,22 @@ complex deployment may involve, for example, 
> starting virtual machines through
>  a Virtual Private Server (VPS) provider.  In such a case, a different
>  @var{environment} type would be used.
>  
> +Do note that you first need to generate a key pair on the coordinator machine
> +to allow the daemon to export signed archives of files from the store
> +(@pxref{Invoking guix archive}).
> +
> +@example
> +# guix archive --generate-key
> +@end example
> +
> +@noindent
> +Each target machine must authorize the key of the master machine so that it
> +accepts store items it receives from the coordinator:
> +
> +@example
> +# guix archive --authorize < coordinator-public-key.txt
> +@end example
> +
>  @deftp {Data Type} machine
>  This is the data type representing a single machine in a heterogeneous Guix
>  deployment.

--- End Message ---
reply via email to
[Prev in Thread] Current Thread [Next in Thread]