GNU bug report logs - #74776
[PATCH 0/7] Adding '--no-check-certificate' to 'pull' and 'time-machine'

Previous Next

Full log

View this message in rfc822 format

From: help-debbugs <at> gnu.org (GNU bug Tracking System)
To: Ludovic Courtès <ludo <at> gnu.org>
Cc: tracker <at> debbugs.gnu.org
Subject: bug#74776: closed ([PATCH 0/7] Adding '--no-check-certificate' to
 'pull' and 'time-machine')
Date: Wed, 25 Dec 2024 22:55:02 +0000

[Message part 1 (text/plain, inline)]

Your message dated Wed, 25 Dec 2024 23:54:24 +0100
with message-id <871pxv2x27.fsf <at> gnu.org>
and subject line Re: [bug#74776] [PATCH 0/7] Adding '--no-check-certificate' to 'pull' and 'time-machine'
has caused the debbugs.gnu.org bug report #74776,
regarding [PATCH 0/7] Adding '--no-check-certificate' to 'pull' and 'time-machine'
to be marked as done.

(If you believe you have received this mail in error, please contact
help-debbugs <at> gnu.org.)


-- 
74776: https://debbugs.gnu.org/cgi/bugreport.cgi?bug=74776
GNU Bug Tracking System
Contact help-debbugs <at> gnu.org with problems

[Message part 2 (message/rfc822, inline)]

From: Ludovic Courtès <ludo <at> gnu.org>
To: guix-patches <at> gnu.org
Cc: Ludovic Courtès <ludo <at> gnu.org>,
 Nicolas Graves <ngraves <at> ngraves.fr>
Subject: [PATCH 0/7] Adding '--no-check-certificate' to 'pull' and
 'time-machine'
Date: Wed, 11 Dec 2024 00:33:22 +0100

Hello,

As discussed with Nicolas in <https://issues.guix.gnu.org/74711>, being
able to skip X.509 certificate verification in ‘guix pull’ & co. can
be useful in emergency situations.

This patch series:

  • fixes ‘guix download --git --no-check-certificate’ so that
    ‘--no-check-certificate’ is actually honored;

  • adds ‘--no-check-certificate’ to ‘pull’ and ‘time-machine’.

Thoughts?

Ludo’.

Ludovic Courtès (7):
  git: Remove Guile-Git < 0.4.0 compatibility fallback.
  git: Allow X.509 certificate verification to be disabled.
  guix download: Honor ‘--no-check-certificate’ for ‘--git’.
  channels: Add #:verify-certificate? and honor it.
  pull: Add ‘--no-check-certificate’.
  inferior: Add #:verify-certificate? to ‘cached-channel-instance’.
  time-machine: Add ‘--no-check-certificate’.

 doc/guix.texi                 |  8 ++++
 guix/channels.scm             | 22 ++++++++---
 guix/git.scm                  | 72 ++++++++++++++++++++++++-----------
 guix/inferior.scm             | 24 ++++++++----
 guix/scripts/download.scm     | 34 +++++++++--------
 guix/scripts/pull.scm         | 16 ++++++--
 guix/scripts/time-machine.scm | 14 ++++++-
 7 files changed, 134 insertions(+), 56 deletions(-)


base-commit: dcaccc8b722cee279c00bb321baa48ae73563931
-- 
2.46.0

[Message part 3 (message/rfc822, inline)]

From: Ludovic Courtès <ludo <at> gnu.org>
To: 74776-done <at> debbugs.gnu.org
Cc: Josselin Poiret <dev <at> jpoiret.xyz>, Nicolas Graves <ngraves <at> ngraves.fr>,
 Simon Tournier <zimon.toutoune <at> gmail.com>, Mathieu Othacehe <othacehe <at> gnu.org>,
 Tobias Geerinckx-Rice <me <at> tobias.gr>, Christopher Baines <guix <at> cbaines.net>
Subject: Re: [bug#74776] [PATCH 0/7] Adding '--no-check-certificate' to
 'pull' and 'time-machine'
Date: Wed, 25 Dec 2024 23:54:24 +0100

Ludovic Courtès <ludo <at> gnu.org> skribis:

>   git: Remove Guile-Git < 0.4.0 compatibility fallback.
>   git: Allow X.509 certificate verification to be disabled.
>   guix download: Honor ‘--no-check-certificate’ for ‘--git’.
>   channels: Add #:verify-certificate? and honor it.
>   pull: Add ‘--no-check-certificate’.
>   inferior: Add #:verify-certificate? to ‘cached-channel-instance’.
>   time-machine: Add ‘--no-check-certificate’.

Pushed as e16cdcf37d8223b3634ec5e658356c3b7f154859.

Ludo’.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.