GNU bug report logs -
#41803
[PATCH] Yggdrasil package and accompanying shepherd service (mesh network)
Previous Next
Reported by: raingloom <raingloom <at> riseup.net>
Date: Thu, 11 Jun 2020 13:58:01 UTC
Severity: normal
Tags: patch
Done: Julien Lepiller <julien <at> lepiller.eu>
Bug is archived. No further changes may be made.
Full log
View this message in rfc822 format
[Message part 1 (text/plain, inline)]
Your bug report
#41803: [PATCH] Yggdrasil package and accompanying shepherd service (mesh network)
which was filed against the guix-patches package, has been closed.
The explanation is attached below, along with your original report.
If you require more details, please reply to 41803 <at> debbugs.gnu.org.
--
41803: http://debbugs.gnu.org/cgi/bugreport.cgi?bug=41803
GNU Bug Tracking System
Contact help-debbugs <at> gnu.org with problems
[Message part 2 (message/rfc822, inline)]
Le Thu, 5 Nov 2020 15:43:41 +0100,
raingloom <raingloom <at> riseup.net> a écrit :
> Final version, hopefully.
> Slight upgrade to system example to make testing easier. (added curl
> to packages)
Thank you, finally pushed as 336c9f0a81c9bc0ed0a2d3e0d050a677806c07c0
to fe1cd098d2b83737e96f19438612291f5a9316e4.
I had to change a few things: the commit messages need to be written in
present tense (Added -> Add). I added some line breaks in the manual
and double spacing before periods. I changed the synopsis and
description of one or two packages to match our standards.
[Message part 3 (message/rfc822, inline)]
[Message part 4 (text/plain, inline)]
from: https://yggdrasil-network.github.io/
"Yggdrasil is an early-stage implementation of a fully end-to-end
encrypted IPv6 network."
I spent the last few days packaging it and now it's in a state where I
think it's usable.
The configuration can include private keys, so that part should NOT go
in the operating system config, because it would get stored in the
world-readable Guix store. Nix works around this by merging the
generated config with a JSON file and sending it to yggdrasil over its
stdin.
I chose not to do that because I couldn't figure out how to open a
service's stdin and because I think the way I did it is much more
elegant in the long run.
The package is lightly patched to take not one but two config files,
and it simply merges them internally. The patch is completely backwards
compatible and unobtrusive. It took me about an hour to write and debug
and most of that was just figuring out Go's syntax and type system.
I will try to get upstream to accept it, or implement similar
functionality.
Still TODO:
documenting the service as an info page.
The gist of using it is:
1. look at example operating system
2. see yggdrasil -genconf -json for config options
(3.) optional: save output as /etc/yggdrasil-secret.conf
(4.) chmod 600 /etc/yggdrasil-secret.conf
(5.) delete everything but the signing and encryption keys
6. add peers as needed, or set autoconf? to #t to connect through a
local peer
It seems to work fine. I could connect to open peers from one
machine and another one could auto-configure itself to connect through
the first one over the LAN. It's pretty nifty.
[0001-gnu-go-golang-org-x-sys-update-to-05986578812163b266.patch (text/x-patch, attachment)]
[0002-gnu-add-yggdrasil-dependencies.patch (text/x-patch, attachment)]
[0003-gnu-add-yggdrasil-package-at-version-0.3.14-plus-pat.patch (text/x-patch, attachment)]
[0004-gnu-services-Add-new-service-for-yggdrasil-network.patch (text/x-patch, attachment)]
[0005-gnu-system-add-example-with-yggdrasil.patch (text/x-patch, attachment)]
This bug report was last modified 4 years and 195 days ago.
Previous Next
GNU bug tracking system
Copyright (C) 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson.