GNU bug report logs - #49114
‘guix lint’ should catch certificate validation exceptions

Previous Next

Package: guix;

Reported by: Tobias Geerinckx-Rice <me <at> tobias.gr>

Date: Sat, 19 Jun 2021 11:30:02 UTC

Severity: normal

Done: Ludovic Courtès <ludo <at> gnu.org>

Bug is archived. No further changes may be made.

Full log

View this message in rfc822 format

From: Tobias Geerinckx-Rice <me <at> tobias.gr>
To: 49114 <at> debbugs.gnu.org
Subject: bug#49114: ‘guix lint’ should catch certificate validation exceptions
Date: Sat, 19 Jun 2021 13:29:48 +0200

[Message part 1 (text/plain, inline)]

Guix,

The linter should obviously warn about TLS errors but it should 
not terminate processing.  See ‘guix lint ibndp’ or ‘guix lint 
ttping’, where the hostname and certificate CN/SAN don't match.

In any other situation Guix is probably right to throw a scary 
error and abort, even if hashes are our primary defence, not TLS.

Kind regards,

T G-R

[signature.asc (application/pgp-signature, inline)]

This bug report was last modified 3 years and 329 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.

GNU bug report logs - #49114 ‘guix lint’ should catch certificate validation exceptions

GNU bug report logs - #49114
‘guix lint’ should catch certificate validation exceptions