[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
bug#30143: UX: print warning if substitute server is not authorized
|
From: |
Chris Marusich |
|
Subject: |
bug#30143: UX: print warning if substitute server is not authorized |
|
Date: |
Sun, 21 Jan 2018 23:08:39 -0800 |
|
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/25.3 (gnu/linux) |
Ricardo Wurmus <address@hidden> writes:
> Suppose I add example.com as a substitute server by passing
> “--substitute-urls=https://example.com” to the daemon or the Guix
> command line. I haven’t authorized the signing key, so Guix won’t
> accept any of the substitutes from example.com.
>
> Currently, Guix does not make it obvious to the user that a requested
> substitute server is ignored because its key is not authorized. We
> should print a clear warning in this case.
>
> (guix scripts authenticate) already includes “validate-signature”, which
> aborts with an error if the key is not authorized, but we don’t seem to
> use it.
What if example.com serves substitutes that are signed by another
server, such as hydra.gnu.org? No matter where a substitute comes from,
if it was signed with an authorized key and its signature checks out,
then it's OK to use, right?
--
Chris
signature.asc
Description: PGP signature