* New signing key
@ 2023-07-24 2:26 Leo Famulari
2023-12-12 16:37 ` Maxim Cournoyer
0 siblings, 1 reply; 8+ messages in thread
From: Leo Famulari @ 2023-07-24 2:26 UTC (permalink / raw)
To: guix-patches; +Cc: guix-devel
[-- Attachment #1: Type: text/plain, Size: 181 bytes --]
Hello,
I'm changing my Guix signing key from
B0515948F1E7D3C1B98038A02646FA30BACA7F08 to
6840722EEEE4D3A64EE53EAC6AAC1963757F47FF.
Patches to follow. Testing is appreciated!
Leo
[-- Attachment #2: signature.asc --]
[-- Type: application/pgp-signature, Size: 833 bytes --]
^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: New signing key
2023-07-24 2:26 New signing key Leo Famulari
@ 2023-12-12 16:37 ` Maxim Cournoyer
2023-12-12 17:02 ` bug#67790: " Maxim Cournoyer
0 siblings, 1 reply; 8+ messages in thread
From: Maxim Cournoyer @ 2023-12-12 16:37 UTC (permalink / raw)
To: Leo Famulari; +Cc: guix-patches, guix-devel
Hi,
Leo Famulari <leo@famulari.name> writes:
> Hello,
>
> I'm changing my Guix signing key from
> B0515948F1E7D3C1B98038A02646FA30BACA7F08 to
> 6840722EEEE4D3A64EE53EAC6AAC1963757F47FF.
>
> Patches to follow. Testing is appreciated!
Thanks for the heads-up!
--
Thanks,
Maxim
^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: bug#67790: New signing key
2023-12-12 16:37 ` Maxim Cournoyer
@ 2023-12-12 17:02 ` Maxim Cournoyer
2023-12-14 2:10 ` Leo Famulari
0 siblings, 1 reply; 8+ messages in thread
From: Maxim Cournoyer @ 2023-12-12 17:02 UTC (permalink / raw)
To: Leo Famulari; +Cc: guix-devel, 67790
Hi,
Maxim Cournoyer <maxim.cournoyer@gmail.com> writes:
> Hi,
>
> Leo Famulari <leo@famulari.name> writes:
>
>> Hello,
>>
>> I'm changing my Guix signing key from
>> B0515948F1E7D3C1B98038A02646FA30BACA7F08 to
>> 6840722EEEE4D3A64EE53EAC6AAC1963757F47FF.
>>
>> Patches to follow. Testing is appreciated!
>
> Thanks for the heads-up!
Note that I believe you can simply update to your new key yourself.
You'll want to add your new key to the keyring branch, then adjust the
.guix-authorizations file with its new keygrip.
Your new key will become mandated after your .guix-authorizations change
is pushed.
--
Thanks,
Maxim
^ permalink raw reply [flat|nested] 8+ messages in thread
* bug#67790: New signing key
2023-12-12 17:02 ` bug#67790: " Maxim Cournoyer
@ 2023-12-14 2:10 ` Leo Famulari
2023-12-14 3:17 ` [bug#67790] " John Kehayias via Guix-patches via
0 siblings, 1 reply; 8+ messages in thread
From: Leo Famulari @ 2023-12-14 2:10 UTC (permalink / raw)
To: Maxim Cournoyer; +Cc: guix-devel, 67790-done
[-- Attachment #1: Type: text/plain, Size: 395 bytes --]
On Tue, Dec 12, 2023 at 12:02:33PM -0500, Maxim Cournoyer wrote:
> Note that I believe you can simply update to your new key yourself.
> You'll want to add your new key to the keyring branch, then adjust the
> .guix-authorizations file with its new keygrip.
Thanks, I pushed to 'keyring' as
935e3c9e93548a566cf3b3039b0822d4179974e4, and to 'master' as
4c4222f32a2906b7bcab74fab70ff2c2f152e8eb.
[-- Attachment #2: signature.asc --]
[-- Type: application/pgp-signature, Size: 833 bytes --]
^ permalink raw reply [flat|nested] 8+ messages in thread
* [bug#67790] New signing key
2023-12-14 2:10 ` Leo Famulari
@ 2023-12-14 3:17 ` John Kehayias via Guix-patches via
2023-12-14 16:16 ` bug#67790: " Leo Famulari
0 siblings, 1 reply; 8+ messages in thread
From: John Kehayias via Guix-patches via @ 2023-12-14 3:17 UTC (permalink / raw)
To: Leo Famulari; +Cc: guix-devel, 67790-done, Maxim Cournoyer
On Wed, Dec 13, 2023 at 09:10 PM, Leo Famulari wrote:
> On Tue, Dec 12, 2023 at 12:02:33PM -0500, Maxim Cournoyer wrote:
>> Note that I believe you can simply update to your new key yourself.
>> You'll want to add your new key to the keyring branch, then adjust the
>> .guix-authorizations file with its new keygrip.
>
> Thanks, I pushed to 'keyring' as
> 935e3c9e93548a566cf3b3039b0822d4179974e4, and to 'master' as
> 4c4222f32a2906b7bcab74fab70ff2c2f152e8eb.
>
Just saw, thanks for the update.
And I assume all this was just to use a new key (did I see some
mention of subkeys on #guix? that's what I use) and not because of
something bad happening to the old one right?
John
^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: bug#67790: New signing key
2023-12-14 3:17 ` [bug#67790] " John Kehayias via Guix-patches via
@ 2023-12-14 16:16 ` Leo Famulari
2023-12-15 6:06 ` John Kehayias
0 siblings, 1 reply; 8+ messages in thread
From: Leo Famulari @ 2023-12-14 16:16 UTC (permalink / raw)
To: John Kehayias; +Cc: Maxim Cournoyer, 67790-done, guix-devel
On Wed, Dec 13, 2023, at 22:17, John Kehayias wrote:
> And I assume all this was just to use a new key (did I see some
> mention of subkeys on #guix? that's what I use) and not because of
> something bad happening to the old one right?
I don't know if anything bad happened to the old key. That's fundamentally unknowable. But I decided to start using a new key.
^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: bug#67790: New signing key
2023-12-14 16:16 ` bug#67790: " Leo Famulari
@ 2023-12-15 6:06 ` John Kehayias
2023-12-15 20:19 ` Leo Famulari
0 siblings, 1 reply; 8+ messages in thread
From: John Kehayias @ 2023-12-15 6:06 UTC (permalink / raw)
To: Leo Famulari; +Cc: Maxim Cournoyer, 67790-done, guix-devel
On Thu, Dec 14, 2023 at 11:16 AM, Leo Famulari wrote:
> On Wed, Dec 13, 2023, at 22:17, John Kehayias wrote:
>> And I assume all this was just to use a new key (did I see some
>> mention of subkeys on #guix? that's what I use) and not because of
>> something bad happening to the old one right?
>
> I don't know if anything bad happened to the old key. That's
> fundamentally unknowable. But I decided to start using a new key.
I suppose I should have been more specific than "something bad" :) I
merely meant this wasn't an actual security issue of losing control of
a private key, but merely moving to a new one for other reasons.
In any event, this is a good reminder (to myself) to have backups of
private keys somewhere safe!
^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: bug#67790: New signing key
2023-12-15 6:06 ` John Kehayias
@ 2023-12-15 20:19 ` Leo Famulari
0 siblings, 0 replies; 8+ messages in thread
From: Leo Famulari @ 2023-12-15 20:19 UTC (permalink / raw)
To: John Kehayias; +Cc: Maxim Cournoyer, 67790-done, guix-devel
On Fri, Dec 15, 2023 at 06:06:26AM +0000, John Kehayias wrote:
> I suppose I should have been more specific than "something bad" :) I
> merely meant this wasn't an actual security issue of losing control of
> a private key, but merely moving to a new one for other reasons.
The old key "expired" last summer. I had been faking the date for months
to work around that. I did not feel motivated to change the expiration
date or to remove the expiration date either :)
It was easier to make a new key.
^ permalink raw reply [flat|nested] 8+ messages in thread
end of thread, other threads:[~2023-12-15 20:20 UTC | newest]
Thread overview: 8+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2023-07-24 2:26 New signing key Leo Famulari
2023-12-12 16:37 ` Maxim Cournoyer
2023-12-12 17:02 ` bug#67790: " Maxim Cournoyer
2023-12-14 2:10 ` Leo Famulari
2023-12-14 3:17 ` [bug#67790] " John Kehayias via Guix-patches via
2023-12-14 16:16 ` bug#67790: " Leo Famulari
2023-12-15 6:06 ` John Kehayias
2023-12-15 20:19 ` Leo Famulari
Code repositories for project(s) associated with this public inbox
https://git.savannah.gnu.org/cgit/guix.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).