Andrew Zick02/02/2023, 8:16 PM
, everything works great! So I figure maybe fleetctl needs a minimum version or something? Which means I just need to get newer binaries of orbit and osquery from….somewhere?
bit is from a debug log that we stuck in the go code:
in the file
in the function
func InitializeUpdates(updateOpt update.Options) (*UpdatesData, error)
is a custom argument that we added for passing the host-identifier to osquery during packaging
Andrew Zick02/02/2023, 9:26 PM
, I’m just a dev but I bet I can find the right person for sales to talk to 🙂 What exactly does “self-hosted TUF servers using Fleet’s tooling” mean? E.g. are you’re talking about using fleetctl? Updating via
? Something else?
subcommands to generate and maintain a TUF repo.
fleetctl updates --help NAME: fleetctl updates - Manage client updates USAGE: fleetctl updates command [command options] [arguments...] DESCRIPTION: fleetctl updates commands provide the initialization and management of a TUF-compliant update repository. This functionality is licensed under the Fleet EE License. Usage requires a current Fleet EE subscription.
Andrew Zick02/02/2023, 9:28 PM
Andrew Zick02/02/2023, 9:38 PM
works when I let it use the defaults for
which are Fleet’s TUF repo + root key metadata. But when I try using my own TUF repo that lives in S3, I get the weird error. My TUF repo probably hasn’t been touched in over a year so all the targets are very old (versions in op). Which is why I was wondering if the issue was a newer
that can’t package really old orbit/osqueryd binaries. Totally reasonable if that’s the case! Also totally reasonable if debugging this weird custom case requires paying for support, people’s time isn’t free 👍
it sounds like you are trying to use a self-hosted TUF repo which would be generated with the premium licensed
commands. Let me work on getting the right folks connected. Thanks!
Andrew Zick02/02/2023, 10:15 PM
but that definitely doesn’t mean it wasn’t used initially and then just not documented. edit: fixed the double negative, woops