From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mp1 ([2001:41d0:2:4a6f::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by ms11 with LMTPS id aP6XLgPo7V7IfwAA0tVLHw (envelope-from ) for ; Sat, 20 Jun 2020 10:42:11 +0000 Received: from aspmx1.migadu.com ([2001:41d0:2:4a6f::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by mp1 with LMTPS id +JJAKgPo7V4WTgAAbx9fmQ (envelope-from ) for ; Sat, 20 Jun 2020 10:42:11 +0000 Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by aspmx1.migadu.com (Postfix) with ESMTPS id 3B6FA9400B1 for ; Sat, 20 Jun 2020 10:42:11 +0000 (UTC) Received: from localhost ([::1]:49128 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1jmaws-0005ar-7R for larch@yhetil.org; Sat, 20 Jun 2020 06:42:10 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]:43722) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1jmawk-0005aX-IB for bug-guix@gnu.org; Sat, 20 Jun 2020 06:42:02 -0400 Received: from debbugs.gnu.org ([209.51.188.43]:45849) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1jmawk-0002nN-9F for bug-guix@gnu.org; Sat, 20 Jun 2020 06:42:02 -0400 Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1jmawk-0003jf-6H; Sat, 20 Jun 2020 06:42:02 -0400 X-Loop: help-debbugs@gnu.org Subject: bug#41908: guix time-machine fails; XXXX is not related to introductory commit of channel 'guix' Resent-From: Ludovic =?UTF-8?Q?Court=C3=A8s?= Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Sat, 20 Jun 2020 10:42:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 41908 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: zimoun Received: via spool by 41908-submit@debbugs.gnu.org id=B41908.159264967314300 (code B ref 41908); Sat, 20 Jun 2020 10:42:02 +0000 Received: (at 41908) by debbugs.gnu.org; 20 Jun 2020 10:41:13 +0000 Received: from localhost ([127.0.0.1]:57395 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1jmavw-0003iZ-Nl for submit@debbugs.gnu.org; Sat, 20 Jun 2020 06:41:12 -0400 Received: from eggs.gnu.org ([209.51.188.92]:57386) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1jmavh-0003hj-UP for 41908@debbugs.gnu.org; Sat, 20 Jun 2020 06:41:12 -0400 Received: from fencepost.gnu.org ([2001:470:142:3::e]:37585) by eggs.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1jmavb-0002jp-Rq; Sat, 20 Jun 2020 06:40:51 -0400 Received: from [2a01:e0a:1d:7270:af76:b9b:ca24:c465] (port=41166 helo=ribbon) by fencepost.gnu.org with esmtpsa (TLS1.2:RSA_AES_256_CBC_SHA1:256) (Exim 4.82) (envelope-from ) id 1jmavb-0001Yb-43; Sat, 20 Jun 2020 06:40:51 -0400 From: Ludovic =?UTF-8?Q?Court=C3=A8s?= References: <87blli11pi.fsf@gnu.org> <87366qeovy.fsf@gnu.org> <86366qtzdi.fsf@gmail.com> Date: Sat, 20 Jun 2020 12:40:49 +0200 In-Reply-To: <86366qtzdi.fsf@gmail.com> (zimoun's message of "Sat, 20 Jun 2020 01:22:17 +0200") Message-ID: <87tuz6auku.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/26.3 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spam-Score: -2.3 (--) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-Spam-Score: -3.3 (---) X-BeenThere: bug-guix@gnu.org List-Id: Bug reports for GNU Guix List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Cc: 41908@debbugs.gnu.org Errors-To: bug-guix-bounces+larch=yhetil.org@gnu.org Sender: "bug-Guix" X-Scanner: scn0 Authentication-Results: aspmx1.migadu.com; dkim=none; dmarc=none; spf=pass (aspmx1.migadu.com: domain of bug-guix-bounces@gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=bug-guix-bounces@gnu.org X-Spam-Score: -1.01 X-TUID: JrqMr/bZpzzX Hi, Ah yes, what you observed is interesting. If you first travel to a current-ish commit, it gets properly authenticated and cached. >From then on, since 36640207c9543e48cd6daa92930f023f80065a5d is in the closure of the commit you just pulled, it=E2=80=99s authenticated, and you = can travel back to it. It makes perfect sense. Conversely, if you try to go directly to 36640207c9543e48cd6daa92930f023f80065a5d (e.g., with an empty cache), all we can say is that we can=E2=80=99t authenticate it because it=E2=80=99= s unrelated to the introductory commit. So it=E2=80=99s logical, even if surprising. It also means that the problem sort of =E2=80=9Cgoes away=E2=80=9D by itself. zimoun skribis: > BTW, from a security perspective, it is easy to cheat by removing some > commits so the file ~/.cache/guix/authentication/channels/guix should be > protected: read-only and only writable by the daemon. It=E2=80=99s 600 of course. What we could do is ignore it if it=E2=80=99s = not 600 when we open it. Crucially: we cannot and should not restrict what the user can do for the sake of security. Users can pass =E2=80=98--disable-authentication=E2= =80=99, they can run binaries taken from the net, whatever; it=E2=80=99s their machine. Thanks, Ludo=E2=80=99.