Github messages for voidlinux
 help / color / mirror / Atom feed
* [PR PATCH] vault: chown config dir to service user
@ 2021-01-24 21:38 Goorzhel
  2021-01-24 21:45 ` Goorzhel
                   ` (24 more replies)
  0 siblings, 25 replies; 26+ messages in thread
From: Goorzhel @ 2021-01-24 21:38 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 641 bytes --]

There is a new pull request by Goorzhel against master on the void-packages repository

https://github.com/Goorzhel/void-packages vault
https://github.com/void-linux/void-packages/pull/28200

vault: chown config dir to service user
Dunno why I missed this before, but:
```
$ sudo -u _vault vault server -config=/etc/vault
Password:
error loading configuration from /etc/vault: open /etc/vault: permission denied
$ sudo chown _vault:_vault /etc/vault
$ sudo -u _vault vault server -config=/etc/vault
==> Vault server configuration:
<...>
```

A patch file from https://github.com/void-linux/void-packages/pull/28200.patch is attached

[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #2: github-pr-vault-28200.patch --]
[-- Type: text/x-diff, Size: 845 bytes --]

From ed9df2935744a5e7092e994615e790227579193d Mon Sep 17 00:00:00 2001
From: Antonio Gurgel <antonio@goorzhel.com>
Date: Sun, 24 Jan 2021 13:33:58 -0800
Subject: [PATCH] vault: chown config dir to service user

---
 srcpkgs/vault/template | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/srcpkgs/vault/template b/srcpkgs/vault/template
index edfa5c95a91..c8105958a70 100644
--- a/srcpkgs/vault/template
+++ b/srcpkgs/vault/template
@@ -16,7 +16,7 @@ distfiles="https://github.com/hashicorp/${pkgname}/archive/v${version}.tar.gz"
 checksum=fb5d96e682a48bfd421b13cdfffd710da0238dbded1988aab822dd5aae75b4c4
 system_accounts="_vault"
 make_dirs="/var/lib/vault 0700 _vault _vault
- /etc/vault 0700 root root"
+ /etc/vault 0700 _vault _vault"
 
 case "$XBPS_TARGET_MACHINE" in
 	arm*) go_ldflags="$go_ldflags -linkmode=external";;

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
@ 2021-01-24 21:45 ` Goorzhel
  2021-01-24 22:59 ` ericonr
                   ` (23 subsequent siblings)
  24 siblings, 0 replies; 26+ messages in thread
From: Goorzhel @ 2021-01-24 21:45 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 156 bytes --]

New comment by Goorzhel on void-packages repository

https://github.com/void-linux/void-packages/pull/28200#issuecomment-766437563

Comment:
@the-maldridge

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
  2021-01-24 21:45 ` Goorzhel
@ 2021-01-24 22:59 ` ericonr
  2021-01-24 23:00 ` [PR PATCH] [Updated] " Goorzhel
                   ` (22 subsequent siblings)
  24 siblings, 0 replies; 26+ messages in thread
From: ericonr @ 2021-01-24 22:59 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 166 bytes --]

New comment by ericonr on void-packages repository

https://github.com/void-linux/void-packages/pull/28200#issuecomment-766454917

Comment:
You're missing a revbump.

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: [PR PATCH] [Updated] vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
  2021-01-24 21:45 ` Goorzhel
  2021-01-24 22:59 ` ericonr
@ 2021-01-24 23:00 ` Goorzhel
  2021-01-24 23:35 ` the-maldridge
                   ` (21 subsequent siblings)
  24 siblings, 0 replies; 26+ messages in thread
From: Goorzhel @ 2021-01-24 23:00 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 646 bytes --]

There is an updated pull request by Goorzhel against master on the void-packages repository

https://github.com/Goorzhel/void-packages vault
https://github.com/void-linux/void-packages/pull/28200

vault: chown config dir to service user
Dunno why I missed this before, but:
```
$ sudo -u _vault vault server -config=/etc/vault
Password:
error loading configuration from /etc/vault: open /etc/vault: permission denied
$ sudo chown _vault:_vault /etc/vault
$ sudo -u _vault vault server -config=/etc/vault
==> Vault server configuration:
<...>
```

A patch file from https://github.com/void-linux/void-packages/pull/28200.patch is attached

[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #2: github-pr-vault-28200.patch --]
[-- Type: text/x-diff, Size: 1039 bytes --]

From 6733a94a3205851fa1e9e526cd684d3d4a23072c Mon Sep 17 00:00:00 2001
From: Antonio Gurgel <antonio@goorzhel.com>
Date: Sun, 24 Jan 2021 13:33:58 -0800
Subject: [PATCH] vault: chown config dir to service user

---
 srcpkgs/vault/template | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/srcpkgs/vault/template b/srcpkgs/vault/template
index edfa5c95a91..5fc1ce8abaf 100644
--- a/srcpkgs/vault/template
+++ b/srcpkgs/vault/template
@@ -1,7 +1,7 @@
 # Template file for 'vault'
 pkgname=vault
 version=1.6.1
-revision=1
+revision=2
 build_style=go
 go_import_path="github.com/hashicorp/${pkgname}"
 go_build_tags="release"
@@ -16,7 +16,7 @@ distfiles="https://github.com/hashicorp/${pkgname}/archive/v${version}.tar.gz"
 checksum=fb5d96e682a48bfd421b13cdfffd710da0238dbded1988aab822dd5aae75b4c4
 system_accounts="_vault"
 make_dirs="/var/lib/vault 0700 _vault _vault
- /etc/vault 0700 root root"
+ /etc/vault 0700 _vault _vault"
 
 case "$XBPS_TARGET_MACHINE" in
 	arm*) go_ldflags="$go_ldflags -linkmode=external";;

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
                   ` (2 preceding siblings ...)
  2021-01-24 23:00 ` [PR PATCH] [Updated] " Goorzhel
@ 2021-01-24 23:35 ` the-maldridge
  2021-01-25  3:13 ` Goorzhel
                   ` (20 subsequent siblings)
  24 siblings, 0 replies; 26+ messages in thread
From: the-maldridge @ 2021-01-24 23:35 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 241 bytes --]

New comment by the-maldridge on void-packages repository

https://github.com/void-linux/void-packages/pull/28200#issuecomment-766460491

Comment:
Hmm, I'm not 100% sure this doesn't break the vault CLI.  Can you verify that that's the case?

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
                   ` (3 preceding siblings ...)
  2021-01-24 23:35 ` the-maldridge
@ 2021-01-25  3:13 ` Goorzhel
  2021-01-28  4:12 ` ericonr
                   ` (19 subsequent siblings)
  24 siblings, 0 replies; 26+ messages in thread
From: Goorzhel @ 2021-01-25  3:13 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 1176 bytes --]

New comment by Goorzhel on void-packages repository

https://github.com/void-linux/void-packages/pull/28200#issuecomment-766511811

Comment:
CLI seems to work okay:
```
$ ./xbps-src pkg vault && xi vault
<...>
vault-1.6.1_1: updating to 1.6.1_2 ...
<...>
$ sudo sv start vault
ok: run: vault: (pid 19733) 1s
$ vault --version
Vault v1.6.1 (6d2db3f033e02e70202bef9ec896360062b88b03) (cgo)
$ vault operator unseal
<...>
$ vault login
Token (will be hidden):
Success! You are now authenticated. The token information displayed below
is already stored in the token helper. You do NOT need to run "vault login"
again. Future Vault requests will automatically use this token.
<...>
$ vault secrets list | sed -E 's/_[a-z0-9]+/_<...>/'
Path          Type         Accessor              Description
----          ----         --------              -----------
cubbyhole/    cubbyhole    cubbyhole_<...>    per-token private secret storage
identity/     identity     identity_<...>     identity store
secret/       kv           kv_<...>           n/a
sys/          system       system_<...>       system endpoints used for control, policy and debugging
```



^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
                   ` (4 preceding siblings ...)
  2021-01-25  3:13 ` Goorzhel
@ 2021-01-28  4:12 ` ericonr
  2021-02-19  2:21 ` Goorzhel
                   ` (18 subsequent siblings)
  24 siblings, 0 replies; 26+ messages in thread
From: ericonr @ 2021-01-28  4:12 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 168 bytes --]

New comment by ericonr on void-packages repository

https://github.com/void-linux/void-packages/pull/28200#issuecomment-768786879

Comment:
@the-maldridge ok to merge?

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
                   ` (5 preceding siblings ...)
  2021-01-28  4:12 ` ericonr
@ 2021-02-19  2:21 ` Goorzhel
  2021-08-16 15:51 ` [PR PATCH] [Updated] " Goorzhel
                   ` (17 subsequent siblings)
  24 siblings, 0 replies; 26+ messages in thread
From: Goorzhel @ 2021-02-19  2:21 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 172 bytes --]

New comment by Goorzhel on void-packages repository

https://github.com/void-linux/void-packages/pull/28200#issuecomment-781768107

Comment:
@the-maldridge: okay to merge?

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: [PR PATCH] [Updated] vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
                   ` (6 preceding siblings ...)
  2021-02-19  2:21 ` Goorzhel
@ 2021-08-16 15:51 ` Goorzhel
  2021-08-16 15:58 ` Goorzhel
                   ` (16 subsequent siblings)
  24 siblings, 0 replies; 26+ messages in thread
From: Goorzhel @ 2021-08-16 15:51 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 646 bytes --]

There is an updated pull request by Goorzhel against master on the void-packages repository

https://github.com/Goorzhel/void-packages vault
https://github.com/void-linux/void-packages/pull/28200

vault: chown config dir to service user
Dunno why I missed this before, but:
```
$ sudo -u _vault vault server -config=/etc/vault
Password:
error loading configuration from /etc/vault: open /etc/vault: permission denied
$ sudo chown _vault:_vault /etc/vault
$ sudo -u _vault vault server -config=/etc/vault
==> Vault server configuration:
<...>
```

A patch file from https://github.com/void-linux/void-packages/pull/28200.patch is attached

[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #2: github-pr-vault-28200.patch --]
[-- Type: text/x-diff, Size: 1041 bytes --]

From 6733a94a3205851fa1e9e526cd684d3d4a23072c Mon Sep 17 00:00:00 2001
From: Antonio Gurgel <antonio@goorzhel.com>
Date: Sun, 24 Jan 2021 13:33:58 -0800
Subject: [PATCH] vault: chown config dir to service user

---
 srcpkgs/vault/template | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/srcpkgs/vault/template b/srcpkgs/vault/template
index edfa5c95a91c..5fc1ce8abafc 100644
--- a/srcpkgs/vault/template
+++ b/srcpkgs/vault/template
@@ -1,7 +1,7 @@
 # Template file for 'vault'
 pkgname=vault
 version=1.6.1
-revision=1
+revision=2
 build_style=go
 go_import_path="github.com/hashicorp/${pkgname}"
 go_build_tags="release"
@@ -16,7 +16,7 @@ distfiles="https://github.com/hashicorp/${pkgname}/archive/v${version}.tar.gz"
 checksum=fb5d96e682a48bfd421b13cdfffd710da0238dbded1988aab822dd5aae75b4c4
 system_accounts="_vault"
 make_dirs="/var/lib/vault 0700 _vault _vault
- /etc/vault 0700 root root"
+ /etc/vault 0700 _vault _vault"
 
 case "$XBPS_TARGET_MACHINE" in
 	arm*) go_ldflags="$go_ldflags -linkmode=external";;

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
                   ` (7 preceding siblings ...)
  2021-08-16 15:51 ` [PR PATCH] [Updated] " Goorzhel
@ 2021-08-16 15:58 ` Goorzhel
  2021-08-16 16:01 ` [PR PATCH] [Updated] " Goorzhel
                   ` (15 subsequent siblings)
  24 siblings, 0 replies; 26+ messages in thread
From: Goorzhel @ 2021-08-16 15:58 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 434 bytes --]

New comment by Goorzhel on void-packages repository

https://github.com/void-linux/void-packages/pull/28200#issuecomment-899623945

Comment:
> This branch cannot be rebased due to conflicts

Hmm, I did [resolve said conflicts](https://github.com/void-linux/void-packages/pull/28200/commits/eac0d4fc653ec9c93fbaeb3a1deb16c1ac0f7030) through GitHub's UI, but there could be something else I'm missing. I'll just rebase my own branch.

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: [PR PATCH] [Updated] vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
                   ` (8 preceding siblings ...)
  2021-08-16 15:58 ` Goorzhel
@ 2021-08-16 16:01 ` Goorzhel
  2021-10-13  5:40 ` Goorzhel
                   ` (14 subsequent siblings)
  24 siblings, 0 replies; 26+ messages in thread
From: Goorzhel @ 2021-08-16 16:01 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 646 bytes --]

There is an updated pull request by Goorzhel against master on the void-packages repository

https://github.com/Goorzhel/void-packages vault
https://github.com/void-linux/void-packages/pull/28200

vault: chown config dir to service user
Dunno why I missed this before, but:
```
$ sudo -u _vault vault server -config=/etc/vault
Password:
error loading configuration from /etc/vault: open /etc/vault: permission denied
$ sudo chown _vault:_vault /etc/vault
$ sudo -u _vault vault server -config=/etc/vault
==> Vault server configuration:
<...>
```

A patch file from https://github.com/void-linux/void-packages/pull/28200.patch is attached

[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #2: github-pr-vault-28200.patch --]
[-- Type: text/x-diff, Size: 1031 bytes --]

From e9ccf90a354a2c275fd6d506a41af3a77cbf800a Mon Sep 17 00:00:00 2001
From: Antonio Gurgel <antonio@goorzhel.com>
Date: Mon, 16 Aug 2021 09:01:42 -0700
Subject: [PATCH] vault: chown config dir to service user

---
 srcpkgs/vault/template | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/srcpkgs/vault/template b/srcpkgs/vault/template
index a0d4649a461f..5e7625c3e4d3 100644
--- a/srcpkgs/vault/template
+++ b/srcpkgs/vault/template
@@ -1,7 +1,7 @@
 # Template file for 'vault'
 pkgname=vault
 version=1.8.1
-revision=1
+revision=2
 build_style=go
 go_import_path="github.com/hashicorp/vault"
 go_build_tags="release"
@@ -16,7 +16,7 @@ distfiles="https://github.com/hashicorp/vault/archive/v${version}.tar.gz"
 checksum=dbf389458fddeb5f8c567d00b6d17ce054f5b7667c226dbb598aa2c0f9048004
 system_accounts="_vault"
 make_dirs="/var/lib/vault 0700 _vault _vault
- /etc/vault 0700 root root"
+ /etc/vault 0700 _vault _vault"
 
 case "$XBPS_TARGET_MACHINE" in
 	arm*) go_ldflags="$go_ldflags -linkmode=external";;

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: [PR PATCH] [Updated] vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
                   ` (9 preceding siblings ...)
  2021-08-16 16:01 ` [PR PATCH] [Updated] " Goorzhel
@ 2021-10-13  5:40 ` Goorzhel
  2021-10-13  5:53 ` Goorzhel
                   ` (13 subsequent siblings)
  24 siblings, 0 replies; 26+ messages in thread
From: Goorzhel @ 2021-10-13  5:40 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 646 bytes --]

There is an updated pull request by Goorzhel against master on the void-packages repository

https://github.com/Goorzhel/void-packages vault
https://github.com/void-linux/void-packages/pull/28200

vault: chown config dir to service user
Dunno why I missed this before, but:
```
$ sudo -u _vault vault server -config=/etc/vault
Password:
error loading configuration from /etc/vault: open /etc/vault: permission denied
$ sudo chown _vault:_vault /etc/vault
$ sudo -u _vault vault server -config=/etc/vault
==> Vault server configuration:
<...>
```

A patch file from https://github.com/void-linux/void-packages/pull/28200.patch is attached

[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #2: github-pr-vault-28200.patch --]
[-- Type: text/x-diff, Size: 1031 bytes --]

From 43ae60889ba57710a2ca0502018ad67e4509f433 Mon Sep 17 00:00:00 2001
From: Antonio Gurgel <antonio@goorzhel.com>
Date: Mon, 16 Aug 2021 09:01:42 -0700
Subject: [PATCH] vault: chown config dir to service user

---
 srcpkgs/vault/template | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/srcpkgs/vault/template b/srcpkgs/vault/template
index 9d946c7c396e..ac7a2dcc891a 100644
--- a/srcpkgs/vault/template
+++ b/srcpkgs/vault/template
@@ -1,7 +1,7 @@
 # Template file for 'vault'
 pkgname=vault
 version=1.8.2
-revision=1
+revision=2
 build_style=go
 go_import_path="github.com/hashicorp/vault"
 go_build_tags="release"
@@ -17,7 +17,7 @@ distfiles="https://github.com/hashicorp/vault/archive/v${version}.tar.gz"
 checksum=ead7e85a64d31a8e69ca9932f1c53cdc46ed813d9532a8a7a7f0d187ea4f01f3
 system_accounts="_vault"
 make_dirs="/var/lib/vault 0700 _vault _vault
- /etc/vault 0700 root root"
+ /etc/vault 0700 _vault _vault"
 
 case "$XBPS_TARGET_MACHINE" in
 	arm*) go_ldflags="$go_ldflags -linkmode=external";;

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
                   ` (10 preceding siblings ...)
  2021-10-13  5:40 ` Goorzhel
@ 2021-10-13  5:53 ` Goorzhel
  2021-10-13  5:53 ` Goorzhel
                   ` (12 subsequent siblings)
  24 siblings, 0 replies; 26+ messages in thread
From: Goorzhel @ 2021-10-13  5:53 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 228 bytes --]

New comment by Goorzhel on void-packages repository

https://github.com/void-linux/void-packages/pull/28200#issuecomment-941944913

Comment:
@the-maldridge: okay to merge? I re-ran the previous steps on `1.8.2_2` without error.

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
                   ` (11 preceding siblings ...)
  2021-10-13  5:53 ` Goorzhel
@ 2021-10-13  5:53 ` Goorzhel
  2021-11-15  2:42 ` [PR PATCH] [Updated] " Goorzhel
                   ` (11 subsequent siblings)
  24 siblings, 0 replies; 26+ messages in thread
From: Goorzhel @ 2021-10-13  5:53 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 255 bytes --]

New comment by Goorzhel on void-packages repository

https://github.com/void-linux/void-packages/pull/28200#issuecomment-941944913

Comment:
@the-maldridge: okay to merge? I re-ran [the previous steps](#issuecomment-766511811) on `1.8.2_2` without error.

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: [PR PATCH] [Updated] vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
                   ` (12 preceding siblings ...)
  2021-10-13  5:53 ` Goorzhel
@ 2021-11-15  2:42 ` Goorzhel
  2021-11-15  6:02 ` Goorzhel
                   ` (10 subsequent siblings)
  24 siblings, 0 replies; 26+ messages in thread
From: Goorzhel @ 2021-11-15  2:42 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 646 bytes --]

There is an updated pull request by Goorzhel against master on the void-packages repository

https://github.com/Goorzhel/void-packages vault
https://github.com/void-linux/void-packages/pull/28200

vault: chown config dir to service user
Dunno why I missed this before, but:
```
$ sudo -u _vault vault server -config=/etc/vault
Password:
error loading configuration from /etc/vault: open /etc/vault: permission denied
$ sudo chown _vault:_vault /etc/vault
$ sudo -u _vault vault server -config=/etc/vault
==> Vault server configuration:
<...>
```

A patch file from https://github.com/void-linux/void-packages/pull/28200.patch is attached

[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #2: github-pr-vault-28200.patch --]
[-- Type: text/x-diff, Size: 1031 bytes --]

From 43ae60889ba57710a2ca0502018ad67e4509f433 Mon Sep 17 00:00:00 2001
From: Antonio Gurgel <antonio@goorzhel.com>
Date: Mon, 16 Aug 2021 09:01:42 -0700
Subject: [PATCH] vault: chown config dir to service user

---
 srcpkgs/vault/template | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/srcpkgs/vault/template b/srcpkgs/vault/template
index 9d946c7c396e..ac7a2dcc891a 100644
--- a/srcpkgs/vault/template
+++ b/srcpkgs/vault/template
@@ -1,7 +1,7 @@
 # Template file for 'vault'
 pkgname=vault
 version=1.8.2
-revision=1
+revision=2
 build_style=go
 go_import_path="github.com/hashicorp/vault"
 go_build_tags="release"
@@ -17,7 +17,7 @@ distfiles="https://github.com/hashicorp/vault/archive/v${version}.tar.gz"
 checksum=ead7e85a64d31a8e69ca9932f1c53cdc46ed813d9532a8a7a7f0d187ea4f01f3
 system_accounts="_vault"
 make_dirs="/var/lib/vault 0700 _vault _vault
- /etc/vault 0700 root root"
+ /etc/vault 0700 _vault _vault"
 
 case "$XBPS_TARGET_MACHINE" in
 	arm*) go_ldflags="$go_ldflags -linkmode=external";;

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: [PR PATCH] [Updated] vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
                   ` (13 preceding siblings ...)
  2021-11-15  2:42 ` [PR PATCH] [Updated] " Goorzhel
@ 2021-11-15  6:02 ` Goorzhel
  2021-11-18  5:26 ` Goorzhel
                   ` (9 subsequent siblings)
  24 siblings, 0 replies; 26+ messages in thread
From: Goorzhel @ 2021-11-15  6:02 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 646 bytes --]

There is an updated pull request by Goorzhel against master on the void-packages repository

https://github.com/Goorzhel/void-packages vault
https://github.com/void-linux/void-packages/pull/28200

vault: chown config dir to service user
Dunno why I missed this before, but:
```
$ sudo -u _vault vault server -config=/etc/vault
Password:
error loading configuration from /etc/vault: open /etc/vault: permission denied
$ sudo chown _vault:_vault /etc/vault
$ sudo -u _vault vault server -config=/etc/vault
==> Vault server configuration:
<...>
```

A patch file from https://github.com/void-linux/void-packages/pull/28200.patch is attached

[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #2: github-pr-vault-28200.patch --]
[-- Type: text/x-diff, Size: 1031 bytes --]

From 43ae60889ba57710a2ca0502018ad67e4509f433 Mon Sep 17 00:00:00 2001
From: Antonio Gurgel <antonio@goorzhel.com>
Date: Mon, 16 Aug 2021 09:01:42 -0700
Subject: [PATCH] vault: chown config dir to service user

---
 srcpkgs/vault/template | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/srcpkgs/vault/template b/srcpkgs/vault/template
index 9d946c7c396e..ac7a2dcc891a 100644
--- a/srcpkgs/vault/template
+++ b/srcpkgs/vault/template
@@ -1,7 +1,7 @@
 # Template file for 'vault'
 pkgname=vault
 version=1.8.2
-revision=1
+revision=2
 build_style=go
 go_import_path="github.com/hashicorp/vault"
 go_build_tags="release"
@@ -17,7 +17,7 @@ distfiles="https://github.com/hashicorp/vault/archive/v${version}.tar.gz"
 checksum=ead7e85a64d31a8e69ca9932f1c53cdc46ed813d9532a8a7a7f0d187ea4f01f3
 system_accounts="_vault"
 make_dirs="/var/lib/vault 0700 _vault _vault
- /etc/vault 0700 root root"
+ /etc/vault 0700 _vault _vault"
 
 case "$XBPS_TARGET_MACHINE" in
 	arm*) go_ldflags="$go_ldflags -linkmode=external";;

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: [PR PATCH] [Updated] vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
                   ` (14 preceding siblings ...)
  2021-11-15  6:02 ` Goorzhel
@ 2021-11-18  5:26 ` Goorzhel
  2021-11-18  5:29 ` Goorzhel
                   ` (8 subsequent siblings)
  24 siblings, 0 replies; 26+ messages in thread
From: Goorzhel @ 2021-11-18  5:26 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 646 bytes --]

There is an updated pull request by Goorzhel against master on the void-packages repository

https://github.com/Goorzhel/void-packages vault
https://github.com/void-linux/void-packages/pull/28200

vault: chown config dir to service user
Dunno why I missed this before, but:
```
$ sudo -u _vault vault server -config=/etc/vault
Password:
error loading configuration from /etc/vault: open /etc/vault: permission denied
$ sudo chown _vault:_vault /etc/vault
$ sudo -u _vault vault server -config=/etc/vault
==> Vault server configuration:
<...>
```

A patch file from https://github.com/void-linux/void-packages/pull/28200.patch is attached

[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #2: github-pr-vault-28200.patch --]
[-- Type: text/x-diff, Size: 1031 bytes --]

From 43ae60889ba57710a2ca0502018ad67e4509f433 Mon Sep 17 00:00:00 2001
From: Antonio Gurgel <antonio@goorzhel.com>
Date: Mon, 16 Aug 2021 09:01:42 -0700
Subject: [PATCH] vault: chown config dir to service user

---
 srcpkgs/vault/template | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/srcpkgs/vault/template b/srcpkgs/vault/template
index 9d946c7c396e..ac7a2dcc891a 100644
--- a/srcpkgs/vault/template
+++ b/srcpkgs/vault/template
@@ -1,7 +1,7 @@
 # Template file for 'vault'
 pkgname=vault
 version=1.8.2
-revision=1
+revision=2
 build_style=go
 go_import_path="github.com/hashicorp/vault"
 go_build_tags="release"
@@ -17,7 +17,7 @@ distfiles="https://github.com/hashicorp/vault/archive/v${version}.tar.gz"
 checksum=ead7e85a64d31a8e69ca9932f1c53cdc46ed813d9532a8a7a7f0d187ea4f01f3
 system_accounts="_vault"
 make_dirs="/var/lib/vault 0700 _vault _vault
- /etc/vault 0700 root root"
+ /etc/vault 0700 _vault _vault"
 
 case "$XBPS_TARGET_MACHINE" in
 	arm*) go_ldflags="$go_ldflags -linkmode=external";;

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: [PR PATCH] [Updated] vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
                   ` (15 preceding siblings ...)
  2021-11-18  5:26 ` Goorzhel
@ 2021-11-18  5:29 ` Goorzhel
  2021-11-18 13:25 ` Duncaen
                   ` (7 subsequent siblings)
  24 siblings, 0 replies; 26+ messages in thread
From: Goorzhel @ 2021-11-18  5:29 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 646 bytes --]

There is an updated pull request by Goorzhel against master on the void-packages repository

https://github.com/Goorzhel/void-packages vault
https://github.com/void-linux/void-packages/pull/28200

vault: chown config dir to service user
Dunno why I missed this before, but:
```
$ sudo -u _vault vault server -config=/etc/vault
Password:
error loading configuration from /etc/vault: open /etc/vault: permission denied
$ sudo chown _vault:_vault /etc/vault
$ sudo -u _vault vault server -config=/etc/vault
==> Vault server configuration:
<...>
```

A patch file from https://github.com/void-linux/void-packages/pull/28200.patch is attached

[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #2: github-pr-vault-28200.patch --]
[-- Type: text/x-diff, Size: 842 bytes --]

From 87a67b4a0a1063c1b984a78f4903bd89811d1471 Mon Sep 17 00:00:00 2001
From: Antonio Gurgel <antonio@goorzhel.com>
Date: Mon, 16 Aug 2021 09:01:42 -0700
Subject: [PATCH] vault: chown config dir to service user

---
 srcpkgs/vault/template | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/srcpkgs/vault/template b/srcpkgs/vault/template
index 4796d0d95c01..b55e07b004cb 100644
--- a/srcpkgs/vault/template
+++ b/srcpkgs/vault/template
@@ -17,7 +17,7 @@ distfiles="https://github.com/hashicorp/vault/archive/v${version}.tar.gz"
 checksum=ff7fd9a1b33d19e3cb4743acd0139004e360bbffc04fa8e9598129530fc7118f
 system_accounts="_vault"
 make_dirs="/var/lib/vault 0700 _vault _vault
- /etc/vault 0700 root root"
+ /etc/vault 0700 _vault _vault"
 
 case "$XBPS_TARGET_MACHINE" in
 	arm*) go_ldflags="$go_ldflags -linkmode=external";;

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
                   ` (16 preceding siblings ...)
  2021-11-18  5:29 ` Goorzhel
@ 2021-11-18 13:25 ` Duncaen
  2021-11-19  1:53 ` Goorzhel
                   ` (6 subsequent siblings)
  24 siblings, 0 replies; 26+ messages in thread
From: Duncaen @ 2021-11-18 13:25 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 181 bytes --]

New comment by Duncaen on void-packages repository

https://github.com/void-linux/void-packages/pull/28200#issuecomment-972863534

Comment:
Does it actually need write permissions?

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
                   ` (17 preceding siblings ...)
  2021-11-18 13:25 ` Duncaen
@ 2021-11-19  1:53 ` Goorzhel
  2021-11-19  2:49 ` the-maldridge
                   ` (5 subsequent siblings)
  24 siblings, 0 replies; 26+ messages in thread
From: Goorzhel @ 2021-11-19  1:53 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 716 bytes --]

New comment by Goorzhel on void-packages repository

https://github.com/void-linux/void-packages/pull/28200#issuecomment-973655007

Comment:
```
$ sudo strace -u _vault -fo /tmp/uhhh vault server -config=/etc/vault &>/dev/null &
[1] 17454
$ grep etc.vault /tmp/uhhh
17458 execve("/usr/bin/vault", ["vault", "server", "-config=/etc/vault"], 0x7ffe62e284c0 /* 14 vars */) = 0
17471 newfstatat(AT_FDCWD, "/etc/vault",  <unfinished ...>
17471 openat(AT_FDCWD, "/etc/vault", O_RDONLY|O_CLOEXEC) = 8
17471 newfstatat(AT_FDCWD, "/etc/vault/config.hcl", {st_mode=S_IFREG|0644, st_size=194, ...}, AT_SYMLINK_NOFOLLOW) = 0
17471 openat(AT_FDCWD, "/etc/vault/config.hcl", O_RDONLY|O_CLOEXEC) = 9
```
Hmmm. Might not.

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
                   ` (18 preceding siblings ...)
  2021-11-19  1:53 ` Goorzhel
@ 2021-11-19  2:49 ` the-maldridge
  2021-11-19  3:38 ` [PR PATCH] [Updated] " Goorzhel
                   ` (4 subsequent siblings)
  24 siblings, 0 replies; 26+ messages in thread
From: the-maldridge @ 2021-11-19  2:49 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 191 bytes --]

New comment by the-maldridge on void-packages repository

https://github.com/void-linux/void-packages/pull/28200#issuecomment-973678189

Comment:
No, vault only needs to read this directory.

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: [PR PATCH] [Updated] vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
                   ` (19 preceding siblings ...)
  2021-11-19  2:49 ` the-maldridge
@ 2021-11-19  3:38 ` Goorzhel
  2021-11-19 11:10 ` Duncaen
                   ` (3 subsequent siblings)
  24 siblings, 0 replies; 26+ messages in thread
From: Goorzhel @ 2021-11-19  3:38 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 646 bytes --]

There is an updated pull request by Goorzhel against master on the void-packages repository

https://github.com/Goorzhel/void-packages vault
https://github.com/void-linux/void-packages/pull/28200

vault: chown config dir to service user
Dunno why I missed this before, but:
```
$ sudo -u _vault vault server -config=/etc/vault
Password:
error loading configuration from /etc/vault: open /etc/vault: permission denied
$ sudo chown _vault:_vault /etc/vault
$ sudo -u _vault vault server -config=/etc/vault
==> Vault server configuration:
<...>
```

A patch file from https://github.com/void-linux/void-packages/pull/28200.patch is attached

[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #2: github-pr-vault-28200.patch --]
[-- Type: text/x-diff, Size: 842 bytes --]

From 0df1243bc7fcdb733142ca45d2bdea4c73d80032 Mon Sep 17 00:00:00 2001
From: Antonio Gurgel <antonio@goorzhel.com>
Date: Mon, 16 Aug 2021 09:01:42 -0700
Subject: [PATCH] vault: chown config dir to service user

---
 srcpkgs/vault/template | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/srcpkgs/vault/template b/srcpkgs/vault/template
index 4796d0d95c01..fa874399190a 100644
--- a/srcpkgs/vault/template
+++ b/srcpkgs/vault/template
@@ -17,7 +17,7 @@ distfiles="https://github.com/hashicorp/vault/archive/v${version}.tar.gz"
 checksum=ff7fd9a1b33d19e3cb4743acd0139004e360bbffc04fa8e9598129530fc7118f
 system_accounts="_vault"
 make_dirs="/var/lib/vault 0700 _vault _vault
- /etc/vault 0700 root root"
+ /etc/vault 0500 _vault _vault"
 
 case "$XBPS_TARGET_MACHINE" in
 	arm*) go_ldflags="$go_ldflags -linkmode=external";;

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
                   ` (20 preceding siblings ...)
  2021-11-19  3:38 ` [PR PATCH] [Updated] " Goorzhel
@ 2021-11-19 11:10 ` Duncaen
  2021-11-19 18:05 ` [PR PATCH] [Updated] " Goorzhel
                   ` (2 subsequent siblings)
  24 siblings, 0 replies; 26+ messages in thread
From: Duncaen @ 2021-11-19 11:10 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 276 bytes --]

New comment by Duncaen on void-packages repository

https://github.com/void-linux/void-packages/pull/28200#issuecomment-973980715

Comment:
I think I would go with 750 and make the owner root and the group _vault if those files are supposed to be only read by the vault user.

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: [PR PATCH] [Updated] vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
                   ` (21 preceding siblings ...)
  2021-11-19 11:10 ` Duncaen
@ 2021-11-19 18:05 ` Goorzhel
  2021-11-21 19:23 ` ericonr
  2022-01-07  6:54 ` [PR PATCH] [Merged]: " the-maldridge
  24 siblings, 0 replies; 26+ messages in thread
From: Goorzhel @ 2021-11-19 18:05 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 646 bytes --]

There is an updated pull request by Goorzhel against master on the void-packages repository

https://github.com/Goorzhel/void-packages vault
https://github.com/void-linux/void-packages/pull/28200

vault: chown config dir to service user
Dunno why I missed this before, but:
```
$ sudo -u _vault vault server -config=/etc/vault
Password:
error loading configuration from /etc/vault: open /etc/vault: permission denied
$ sudo chown _vault:_vault /etc/vault
$ sudo -u _vault vault server -config=/etc/vault
==> Vault server configuration:
<...>
```

A patch file from https://github.com/void-linux/void-packages/pull/28200.patch is attached

[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #2: github-pr-vault-28200.patch --]
[-- Type: text/x-diff, Size: 840 bytes --]

From 9ee3faf6d2e1baad774511b686236e455772b526 Mon Sep 17 00:00:00 2001
From: Antonio Gurgel <antonio@goorzhel.com>
Date: Fri, 19 Nov 2021 10:05:18 -0800
Subject: [PATCH] vault: chown config dir to service user

---
 srcpkgs/vault/template | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/srcpkgs/vault/template b/srcpkgs/vault/template
index 4796d0d95c01..987891acd7b3 100644
--- a/srcpkgs/vault/template
+++ b/srcpkgs/vault/template
@@ -17,7 +17,7 @@ distfiles="https://github.com/hashicorp/vault/archive/v${version}.tar.gz"
 checksum=ff7fd9a1b33d19e3cb4743acd0139004e360bbffc04fa8e9598129530fc7118f
 system_accounts="_vault"
 make_dirs="/var/lib/vault 0700 _vault _vault
- /etc/vault 0700 root root"
+ /etc/vault 0750 root _vault"
 
 case "$XBPS_TARGET_MACHINE" in
 	arm*) go_ldflags="$go_ldflags -linkmode=external";;

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
                   ` (22 preceding siblings ...)
  2021-11-19 18:05 ` [PR PATCH] [Updated] " Goorzhel
@ 2021-11-21 19:23 ` ericonr
  2022-01-07  6:54 ` [PR PATCH] [Merged]: " the-maldridge
  24 siblings, 0 replies; 26+ messages in thread
From: ericonr @ 2021-11-21 19:23 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 153 bytes --]

New comment by ericonr on void-packages repository

https://github.com/void-linux/void-packages/pull/28200#issuecomment-974878370

Comment:
ok to merge?

^ permalink raw reply	[flat|nested] 26+ messages in thread

* Re: [PR PATCH] [Merged]: vault: chown config dir to service user
  2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
                   ` (23 preceding siblings ...)
  2021-11-21 19:23 ` ericonr
@ 2022-01-07  6:54 ` the-maldridge
  24 siblings, 0 replies; 26+ messages in thread
From: the-maldridge @ 2022-01-07  6:54 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 490 bytes --]

There's a merged pull request on the void-packages repository

vault: chown config dir to service user
https://github.com/void-linux/void-packages/pull/28200

Description:
Dunno why I missed this before, but:
```
$ sudo -u _vault vault server -config=/etc/vault
Password:
error loading configuration from /etc/vault: open /etc/vault: permission denied
$ sudo chown _vault:_vault /etc/vault
$ sudo -u _vault vault server -config=/etc/vault
==> Vault server configuration:
<...>
```

^ permalink raw reply	[flat|nested] 26+ messages in thread

end of thread, other threads:[~2022-01-07  6:54 UTC | newest]

Thread overview: 26+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-01-24 21:38 [PR PATCH] vault: chown config dir to service user Goorzhel
2021-01-24 21:45 ` Goorzhel
2021-01-24 22:59 ` ericonr
2021-01-24 23:00 ` [PR PATCH] [Updated] " Goorzhel
2021-01-24 23:35 ` the-maldridge
2021-01-25  3:13 ` Goorzhel
2021-01-28  4:12 ` ericonr
2021-02-19  2:21 ` Goorzhel
2021-08-16 15:51 ` [PR PATCH] [Updated] " Goorzhel
2021-08-16 15:58 ` Goorzhel
2021-08-16 16:01 ` [PR PATCH] [Updated] " Goorzhel
2021-10-13  5:40 ` Goorzhel
2021-10-13  5:53 ` Goorzhel
2021-10-13  5:53 ` Goorzhel
2021-11-15  2:42 ` [PR PATCH] [Updated] " Goorzhel
2021-11-15  6:02 ` Goorzhel
2021-11-18  5:26 ` Goorzhel
2021-11-18  5:29 ` Goorzhel
2021-11-18 13:25 ` Duncaen
2021-11-19  1:53 ` Goorzhel
2021-11-19  2:49 ` the-maldridge
2021-11-19  3:38 ` [PR PATCH] [Updated] " Goorzhel
2021-11-19 11:10 ` Duncaen
2021-11-19 18:05 ` [PR PATCH] [Updated] " Goorzhel
2021-11-21 19:23 ` ericonr
2022-01-07  6:54 ` [PR PATCH] [Merged]: " the-maldridge

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).