Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

apt update/upgrade yggdrasil (0.5.1) over (0.4.7) caused missing PublicKey line in new/updated yggdrasil.conf #1080

Open
slrslr opened this issue Oct 29, 2023 · 3 comments
Open

apt update/upgrade yggdrasil (0.5.1) over (0.4.7) caused missing PublicKey line in new/updated yggdrasil.conf #1080

slrslr opened this issue Oct 29, 2023 · 3 comments

Comments

@slrslr
Copy link

slrslr commented Oct 29, 2023

On Debian 11 (oldstable) i did apt update/upgrade:

Get:2 http://neilalexander.s3.dualstack.eu-west-2.amazonaws.com/deb debian/yggdrasil amd64 yggdrasil amd64 0.5.1 [6,156 kB]
Fetched 65.1 MB in 45s (1,454 kB/s)                                                                                                                                                                                                        
Reading changelogs... Done
(Reading database ... 301064 files and directories currently installed.)
Preparing to unpack .../yggdrasil_0.5.1_amd64.deb ...
Removed /etc/systemd/system/multi-user.target.wants/yggdrasil.service.
Unpacking yggdrasil (0.5.1) over (0.4.7) ...
Setting up yggdrasil (0.5.1) ...
Backing up configuration file to /var/backups/yggdrasil.conf.20231028
Normalising and updating /etc/yggdrasil/yggdrasil.conf
Created symlink /etc/systemd/system/multi-user.target.wants/yggdrasil.service → /lib/systemd/system/yggdrasil.service.

in resulting file /etc/yggdrasil/yggdrasil.conf
it relocated

  # Your private key. DO NOT share this with anyone!
  PrivateKey: xxx

to the beginning of the file. Yet removed (not added):

  # Your public key. Your peers may ask you for this to put
  # into their AllowedPublicKeys configuration.
  PublicKey: xxx

as a layman, I do not know how big problem this is and if this is something to improve or if what is right place to report this.
@neilalexander
Copy link
Member

The Debian package normalises the configuration on install (the old versions get backed up to /var/backups) so the PrivateKey will have been moved in the file as a part of that process.

PublicKey was always just advisory and didn't ever do anything, so instead you can fetch your public key using yggdrasilctl getSelf now.

@POMATu
Copy link

POMATu commented Nov 3, 2023
edited

yh its still very inconvenient to connect to socket via yggdrasilctl just to get the public key. It needs to be either in config like before or some command line argument that can convert private key to public part.
I dont use these sockets anywhere because i dont need to control or debug yggdrasil and now you made it mandatory to have this feature enabled.
By KISS principle pubkey should be inside the config like it was before.

PublicKey was always just advisory and didn't ever do anything, so instead you can fetch your public key using yggdrasilctl getSelf now.

PublicKey is needed if you whitelisting this node in another node config. Now its more convenient to get this info from logs on connection errors, rather than yggdrasilctl

@mkg20001
Copy link

mkg20001 commented Nov 5, 2023

The public key is also printed on startup if that helps

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@neilalexander @POMATu @slrslr @mkg20001