GNU bug report logs - #50814
[PATCH] guix: git-authenticate: Also authenticate the channel intro commit.

Reported by: Attila Lendvai <attila <at> lendvai.name>

Date: Sun, 26 Sep 2021 10:26:01 UTC

Severity: important

Tags: patch

Message #70 received at 50814 <at> debbugs.gnu.org (full text, mbox):

From: Maxime Devos <maximedevos <at> telenet.be>
To: Attila Lendvai <attila <at> lendvai.name>, 50814 <at> debbugs.gnu.org
Subject: Re: [bug#50814] [PATCH 5/5] guix: git-authenticate: Fix
 authenticate-repository.
Date: Thu, 30 Sep 2021 01:14:44 +0200

[Message part 1 (text/plain, inline)]

Attila Lendvai schreef op di 28-09-2021 om 18:24 [+0200]:
> [...]
> -(define* (commit-authorized-keys repository commit
> -                                 #:optional (default-authorizations '()))
> -  "Return the list of OpenPGP fingerprints authorized to sign COMMIT, based on
> -authorizations listed in its parent commits.  If one of the parent commits
> -does not specify anything, fall back to DEFAULT-AUTHORIZATIONS."


> +(define (authorized-keys-at-commit repository commit default-authorizations)
> +  "Return the list of authorized key fingerprints from the '.guix-authorizations'
> +file at the given commit."

Could 'default-authorizations' still be documented?

Anyway, I don't see any problems with this patch (ignoring the warning and the
docstrings), but I'm completely unfamiliar with the internals of channel
authentication, so I don't know what to look for.  You'll need to find someone
else to review this.

Greetings,
Maxime

[signature.asc (application/pgp-signature, inline)]

This bug report was last modified 3 years and 73 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.

GNU bug report logs - #50814 [PATCH] guix: git-authenticate: Also authenticate the channel intro commit.

GNU bug report logs - #50814
[PATCH] guix: git-authenticate: Also authenticate the channel intro commit.