GNU bug report logs - #25975
Use HTTPS in `guix pull`

Previous Next

Package: guix-patches;

Reported by: Marius Bakke <mbakke <at> fastmail.com>

Date: Sun, 5 Mar 2017 15:00:02 UTC

Severity: normal

Done: Marius Bakke <mbakke <at> fastmail.com>

Bug is archived. No further changes may be made.

Full log

Message #59 received at 25975 <at> debbugs.gnu.org (full text, mbox):

From: Marius Bakke <mbakke <at> fastmail.com>
To: Leo Famulari <leo <at> famulari.name>, Ludovic Courtès
 <ludo <at> gnu.org>
Cc: 25975 <at> debbugs.gnu.org
Subject: Re: bug#25975: Use HTTPS in `guix pull`
Date: Sat, 11 Mar 2017 19:40:38 +0100

[Message part 1 (text/plain, inline)]
Leo Famulari <leo <at> famulari.name> writes:

> On Sat, Mar 11, 2017 at 11:26:12AM +0100, Ludovic Courtès wrote:
>> > +           (map (lambda (cert)
>> > +                  (copy-file cert (string-append out "/"
>> > +                                                 (strip-store-file-name cert))))
>> > +                (list root intermediate backup))))))
>> 
>> ‘for-each’ instead of ‘map’, to make it clear that it’s for side
>> effects.
>
> Done!
>
>> > +    (license license:public-domain))) ; XXX what license?
>> 
>> It’s not copyrightable so yeah, this is a good approximation.
>
> Okay!
>
> I also changed the home-page to <https://letsencrypt.org/certificates/>.
>
> Updated patch attached.

Great! Here's a revision of `guix pull` that uses this "le-certs"
package, and assumes GnuTLS is available.

One caveat with this approach is that users will need to install GnuTLS
in their profile and set up GUILE_LOAD_PATH before `guix pull` works.


[0001-pull-Default-to-HTTPS.patch (text/x-patch, attachment)]
[signature.asc (application/pgp-signature, inline)]
This bug report was last modified 8 years and 133 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.