From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mp0 ([2001:41d0:2:4a6f::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by ms11 with LMTPS id SK+bHDaL/F5DNwAA0tVLHw (envelope-from ) for ; Wed, 01 Jul 2020 13:10:14 +0000 Received: from aspmx1.migadu.com ([2001:41d0:2:4a6f::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by mp0 with LMTPS id gPuJGDaL/F7bQQAA1q6Kng (envelope-from ) for ; Wed, 01 Jul 2020 13:10:14 +0000 Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by aspmx1.migadu.com (Postfix) with ESMTPS id B5276940308 for ; Wed, 1 Jul 2020 13:10:13 +0000 (UTC) Received: from localhost ([::1]:42316 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1jqcV8-0003wh-SI for larch@yhetil.org; Wed, 01 Jul 2020 09:10:10 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]:46614) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1jqcV0-0003v2-BX for guix-patches@gnu.org; Wed, 01 Jul 2020 09:10:02 -0400 Received: from debbugs.gnu.org ([209.51.188.43]:40984) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1jqcUz-0006rA-V9 for guix-patches@gnu.org; Wed, 01 Jul 2020 09:10:02 -0400 Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1jqcUz-00013q-Pi for guix-patches@gnu.org; Wed, 01 Jul 2020 09:10:01 -0400 X-Loop: help-debbugs@gnu.org Subject: [bug#42048] [PATCH 0/6] Authenticated channels for everyone! Resent-From: zimoun Original-Sender: "Debbugs-submit" Resent-CC: guix-patches@gnu.org Resent-Date: Wed, 01 Jul 2020 13:10:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 42048 X-GNU-PR-Package: guix-patches X-GNU-PR-Keywords: patch To: Ludovic =?UTF-8?Q?Court=C3=A8s?= Cc: 42048@debbugs.gnu.org Received: via spool by 42048-submit@debbugs.gnu.org id=B42048.15936089724018 (code B ref 42048); Wed, 01 Jul 2020 13:10:01 +0000 Received: (at 42048) by debbugs.gnu.org; 1 Jul 2020 13:09:32 +0000 Received: from localhost ([127.0.0.1]:52530 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1jqcUV-00012k-SE for submit@debbugs.gnu.org; Wed, 01 Jul 2020 09:09:32 -0400 Received: from mail-wr1-f65.google.com ([209.85.221.65]:40067) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1jqcUS-00012K-UV for 42048@debbugs.gnu.org; Wed, 01 Jul 2020 09:09:30 -0400 Received: by mail-wr1-f65.google.com with SMTP id h5so23746782wrc.7 for <42048@debbugs.gnu.org>; Wed, 01 Jul 2020 06:09:28 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:cc:subject:in-reply-to:references:date:message-id :mime-version:content-transfer-encoding; bh=HFdDPafkzqDajLBraOoftz8P1FH/G8SohHShvpeKCrU=; b=iZ+Gpo+8U8bILuVz1DJqTW3xUspuahJNSWyVSbPe//f00YS/xjbQz9eAdEIYqlF4op VQwHpecfmumP1iofG0AJgHn/wu1T9LHoVeg7aemz02w0lYzCB+xA3yN0RHlKgethqHJj 7C2iX8rC1e44Dk5B/333Se8HHHYgiuYRz2RX2cYUabkfOl0P5qgadQA3HIG/aWXm2E5g NfOKlGJ7Mr9IL8hMsGq3N3nbl/UxnJKCtl90rrO6L4zWkDOsn+BTYYrHB5Q6mFU/jn4z X0YM29ePHwOpr9HeZFGt1Ae0qET/ENlqB9MuPxQpVLMOYfQSjbSTp9q7t/+Ej9On+sbm uOYw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:in-reply-to:references:date :message-id:mime-version:content-transfer-encoding; bh=HFdDPafkzqDajLBraOoftz8P1FH/G8SohHShvpeKCrU=; b=LLTIODazyqOK/oJFf+9vbLA5fDilQti9H3Yq5VyGwGk4ogUSTFQnF72JiQKRsdzK44 i9rPqZ7wEenxkV7+OEBhUkFL+uFsnAvF5LJKzf3SPIIGKDjgR/9iL2dJCRIZg9Ri18Ln q6/xzRZnpxoW2G1DLG3Xvk0vJUZcifv3DPuTvuKPy3aTQFdjoNiHlJRy9Ant3cRTrWVA jkNvwD9YIxecTNSaxw0q303zstzjMlxG8dt0MO4HEPB2+DIFCVSWoTS43Ej0uaTzLyh6 bVTUyXUvQ1sTnLnFOy+cLr8YRTup7/4EWI2/HQicEYhvg6FY1E9wEW+i9uD/SQWvI4ZA EVmA== X-Gm-Message-State: AOAM531PyVOz6/SM3KRebCgYYelr24YOP/WI2I7gJOW6vFlYTlvUVCLs mfSoc+L/m3e3R0pFI2AFXLPajBb5XAU= X-Google-Smtp-Source: ABdhPJx0sOPLEEBG1HV2dFtmirVQtlGscqe/aN0ZrfMbz+lxfbP96ILWq2EX5Ai2W9u7pn1fpVFl5Q== X-Received: by 2002:adf:a111:: with SMTP id o17mr26373134wro.257.1593608962620; Wed, 01 Jul 2020 06:09:22 -0700 (PDT) Received: from lili ([2a01:e0a:59b:9120:65d2:2476:f637:db1e]) by smtp.gmail.com with ESMTPSA id w14sm7263938wrt.55.2020.07.01.06.09.21 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 01 Jul 2020 06:09:22 -0700 (PDT) From: zimoun In-Reply-To: <87a70jzaxd.fsf@gnu.org> References: <20200625210400.29033-1-ludo@gnu.org> <86ftaba874.fsf@gmail.com> <87a70jzaxd.fsf@gnu.org> Date: Wed, 01 Jul 2020 15:09:21 +0200 Message-ID: <86a70j9ybi.fsf@gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spam-Score: 0.0 (/) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-Spam-Score: -1.0 (-) X-BeenThere: guix-patches@gnu.org List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-patches-bounces+larch=yhetil.org@gnu.org Sender: "Guix-patches" X-Scanner: scn0 Authentication-Results: aspmx1.migadu.com; dkim=fail (rsa verify failed) header.d=gmail.com header.s=20161025 header.b=iZ+Gpo+8; dmarc=fail reason="SPF not aligned (relaxed)" header.from=gmail.com (policy=none); spf=pass (aspmx1.migadu.com: domain of guix-patches-bounces@gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=guix-patches-bounces@gnu.org X-Spam-Score: 0.09 X-TUID: Xrxy0Me+O2IG On Wed, 01 Jul 2020 at 14:17, Ludovic Court=C3=A8s wrote: > But of course, the new =E2=80=98introduction=E2=80=99 field of = won=E2=80=99t be > recognized by older Guix versions. In that case, you should use the > output of =E2=80=98guix describe -f channels-sans-intro=E2=80=99 as I wro= te in the > manual. Older Guix versions means the Scheme lib and not Inferiors, right? I mean, if I run using a Guix post-'introduction' "guix describe -f channels", then I can run with another Guix post-'introduction' "guix time-machine -C channels.scm", everything is fine. However, I cannot use this post-'introduction' channels.scm file with a pre-'introduction' Guix and "guix time-machine -C channels.scm" fails, right?=20 > In general, when a developer loses control over their key, another > committer should remove it right away form =E2=80=98.guix-authorizations= =E2=80=99. (I > did that today following Brett=E2=80=99s message, for example.) > > Signatures on past commits can still be verified and everything is fine. > The (guix openpgp) code ignores key expiration and revocation; it =E2=80= =9Cjust=E2=80=9D > verifies signatures. > >> Today, everything is fine, I sign and I do in introduction. Couple of >> months (or even years) later, my key will be compromised and so I will >> revoke it. What happens if I do "guix time-machine -C"? > > That=E2=80=99s OK. The keyring is distributed along with the channel sti= ll > contains your key, with or without a revocation certificate, but that > doesn=E2=80=99t prevent us from verifying signatures on past commits. (T= his is > different from what gpg does.) It answers to my question about time-machine. Thank you. Now I have another one. :-) Well, if now Eve has the control of an authorized key (for example the Brett's one) then you cannot distinguish between past valid signatures to current malicious ones, even if the key is revoked, right? (It is not a practical issue but it is a possible scenario.) Cheers, simon