From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <guix-patches-bounces+larch=yhetil.org@gnu.org>
Received: from mp1.migadu.com ([2001:41d0:303:e224::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by ms13.migadu.com with LMTPS
	id QL9WCYTQWGf1WgAA62LTzQ:P1
	(envelope-from <guix-patches-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Tue, 10 Dec 2024 23:36:36 +0000
Received: from aspmx1.migadu.com ([2001:41d0:303:e224::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by mp1.migadu.com with LMTPS
	id QL9WCYTQWGf1WgAA62LTzQ
	(envelope-from <guix-patches-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Wed, 11 Dec 2024 00:36:36 +0100
X-Envelope-To: larch@yhetil.org
Authentication-Results: aspmx1.migadu.com;
	dkim=pass header.d=debbugs.gnu.org header.s=debbugs-gnu-org header.b=UNj+lZjQ;
	dkim=fail ("headers rsa verify failed") header.d=gnu.org header.s=fencepost-gnu-org header.b=qz9bpwqN;
	dmarc=pass (policy=none) header.from=gnu.org;
	spf=pass (aspmx1.migadu.com: domain of "guix-patches-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="guix-patches-bounces+larch=yhetil.org@gnu.org"
ARC-Seal: i=1; s=key1; d=yhetil.org; t=1733873796; a=rsa-sha256; cv=none;
	b=hzFTJIjOdQvTYjtg85LZxNd8TvBcwljLiElI+nJGpX6jf7EFSYGPBcZ8sic71TifZ2Bzi+
	LGlgJ/b3eOoxG76oxt9JyzYXF5YTYt42dcgQ5Z9cn17eUB12SAKqN2uutPbxBiH3ZmOyFn
	AmaR+7WZ7kh2HhX+YvlQMS78jK6wdphLLhgy6dxSg1LKuupHol5AY9/+k0IIpfOWxOs6Y8
	3HVqG5b5BRYhAAueIcfXVx0+3AZIojGGWxumvCrmjRN0SYz80GKJUuRGcZXNvYk6Q+wza5
	UQ2HzwAi71dnRTsuFDY8Y+xNythEe54morwyCOtJpAkwPGi0WYgAxagCNm9bSA==
ARC-Authentication-Results: i=1;
	aspmx1.migadu.com;
	dkim=pass header.d=debbugs.gnu.org header.s=debbugs-gnu-org header.b=UNj+lZjQ;
	dkim=fail ("headers rsa verify failed") header.d=gnu.org header.s=fencepost-gnu-org header.b=qz9bpwqN;
	dmarc=pass (policy=none) header.from=gnu.org;
	spf=pass (aspmx1.migadu.com: domain of "guix-patches-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="guix-patches-bounces+larch=yhetil.org@gnu.org"
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org;
	s=key1; t=1733873796;
	h=from:from:sender:sender:reply-to:subject:subject:date:date:
	 message-id:message-id:to:to:cc:cc:mime-version:mime-version:
	 content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:resent-cc:
	 resent-from:resent-sender:resent-message-id:in-reply-to:in-reply-to:
	 references:references:list-id:list-help:list-unsubscribe:
	 list-subscribe:list-post:dkim-signature;
	bh=GTlCADlZ1AP8lQOQ3qonievBGRLFBAlMDgD5anqEijU=;
	b=FZozlEpXC74KD3BwcSOO7bEvVYfwD6X7A+r9dAAqqTQgrJw3ZI1At6h0G2/VZLfzQt2pqG
	17lMhx28ssQp2p+2ka5Xn5/6F5dbH9emynpCF/a3UP6L7fGkK5ezEnxuzRjSnPUkHlEJpr
	kG38J0aDcBFjiURnprz84jCLDZ+cZ4FTYW5agZvdLK7coZ/6HmXumW+1JakDwLNpyhJiUt
	VdPUUEpW33mi4KVw4b58w/sUCY2QnwdBLMm2wy+VKski84TuyXdLVw97UO6mregmnuEgCg
	YqUH8rttYV2TYWwUp0IkvbmM1qlTeS6XT9GUzpeNYf/pPhhdI7rv2cawuu4PQw==
Received: from lists.gnu.org (lists.gnu.org [209.51.188.17])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by aspmx1.migadu.com (Postfix) with ESMTPS id E9FD01A8C8
	for <larch@yhetil.org>; Wed, 11 Dec 2024 00:36:35 +0100 (CET)
Received: from localhost ([::1] helo=lists1p.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.90_1)
	(envelope-from <guix-patches-bounces@gnu.org>)
	id 1tL9lw-0007qQ-G0; Tue, 10 Dec 2024 18:36:08 -0500
Received: from eggs.gnu.org ([2001:470:142:3::10])
 by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1tL9lv-0007px-5L
 for guix-patches@gnu.org; Tue, 10 Dec 2024 18:36:07 -0500
Received: from debbugs.gnu.org ([2001:470:142:5::43])
 by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128)
 (Exim 4.90_1) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1tL9lu-0002ek-Ka; Tue, 10 Dec 2024 18:36:06 -0500
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed;
 d=debbugs.gnu.org; s=debbugs-gnu-org; 
 h=MIME-Version:References:In-Reply-To:Date:From:To:Subject;
 bh=GTlCADlZ1AP8lQOQ3qonievBGRLFBAlMDgD5anqEijU=; 
 b=UNj+lZjQSGxIAHYoAFyMiy45p8cbpw0sLlXffbJjqRqaWaffy3RSbPP2eTVtUOM9kJy6XCOlWQ/1xRHlz50+7umvdZKDAGoTteO0z9m4pZcUvzm9DU/bCObvUj/1thuzNkKH/EXfCIuDJuRsqFj6M9IjY4TNItUi0siagtoe50jOzg324W06JSuIH1EYF8yISOr83aX7nFuRV4Odns0El/LjOYXr2SRkK5OKK+Pmc+Ivy/1Yg45BsyktiiFvOx+WWUKAZ2AcH0AgKRIe5Qa9p+J7FO23mY4AsVugQ/PQGBe/EnExj+SDZPkaApW1N48uOzPnEKlN+/ojkdRdvpgv1g==;
Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2)
 (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1tL9lt-0005eK-8P; Tue, 10 Dec 2024 18:36:05 -0500
X-Loop: help-debbugs@gnu.org
Subject: [bug#74776] [PATCH 7/7] time-machine: Add
 =?UTF-8?Q?=E2=80=98--no-check-certificate=E2=80=99.?=
Resent-From: Ludovic =?UTF-8?Q?Court=C3=A8s?= <ludo@gnu.org>
Original-Sender: "Debbugs-submit" <debbugs-submit-bounces@debbugs.gnu.org>
Resent-CC: guix@cbaines.net, dev@jpoiret.xyz, ludo@gnu.org, othacehe@gnu.org,
 zimon.toutoune@gmail.com, me@tobias.gr, guix-patches@gnu.org
Resent-Date: Tue, 10 Dec 2024 23:36:05 +0000
Resent-Message-ID: <handler.74776.B74776.173387371821479@debbugs.gnu.org>
Resent-Sender: help-debbugs@gnu.org
X-GNU-PR-Message: followup 74776
X-GNU-PR-Package: guix-patches
X-GNU-PR-Keywords: patch
To: 74776@debbugs.gnu.org
Cc: Ludovic =?UTF-8?Q?Court=C3=A8s?= <ludo@gnu.org>,
 Christopher Baines <guix@cbaines.net>, Josselin Poiret <dev@jpoiret.xyz>,
 Ludovic =?UTF-8?Q?Court=C3=A8s?= <ludo@gnu.org>,
 Mathieu Othacehe <othacehe@gnu.org>, Simon Tournier <zimon.toutoune@gmail.com>,
 Tobias Geerinckx-Rice <me@tobias.gr>
X-Debbugs-Original-Xcc: Christopher Baines <guix@cbaines.net>,
 Josselin Poiret <dev@jpoiret.xyz>,
 Ludovic =?UTF-8?Q?Court=C3=A8s?= <ludo@gnu.org>,
 Mathieu Othacehe <othacehe@gnu.org>, Simon Tournier <zimon.toutoune@gmail.com>,
 Tobias Geerinckx-Rice <me@tobias.gr>
Received: via spool by 74776-submit@debbugs.gnu.org id=B74776.173387371821479
 (code B ref 74776); Tue, 10 Dec 2024 23:36:05 +0000
Received: (at 74776) by debbugs.gnu.org; 10 Dec 2024 23:35:18 +0000
Received: from localhost ([127.0.0.1]:60067 helo=debbugs.gnu.org)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <debbugs-submit-bounces@debbugs.gnu.org>)
 id 1tL9l7-0005ZQ-HR
 for submit@debbugs.gnu.org; Tue, 10 Dec 2024 18:35:17 -0500
Received: from eggs.gnu.org ([209.51.188.92]:39876)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <ludo@gnu.org>) id 1tL9kz-0005TT-2u
 for 74776@debbugs.gnu.org; Tue, 10 Dec 2024 18:35:10 -0500
Received: from fencepost.gnu.org ([2001:470:142:3::e])
 by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <ludo@gnu.org>)
 id 1tL9kt-0002b9-SI; Tue, 10 Dec 2024 18:35:03 -0500
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=gnu.org;
 s=fencepost-gnu-org; h=MIME-Version:References:In-Reply-To:Date:Subject:To:
 From; bh=GTlCADlZ1AP8lQOQ3qonievBGRLFBAlMDgD5anqEijU=; b=qz9bpwqNLAa47hpK530Y
 dfDkmEYQ0FglQabnisMO1kjtFp+x6XG28yBuoSvkE/8bdNhPvHz4lS/5BH9stuT5NgmINi/V9VoWj
 1rdDiCCLCat+fRIOyckevDLTpT7B8POy9SVjshWgKUEuX0tKUMRLX6+nAuEHKm+StW32QffFx5F5+
 xE6r3j0GIh20uNfe9iTpat/n8SGYAwWRVrmWGCvZcPvcIwmVsN5ZOGIZrbgIWFXOa+v0yexc71ZVT
 SrXUYAmViPOyhZao/ukPT4rkQjjyoi9Skr+TRnJvzcuOqKjtbIgLEbc3LaoXv8L3zqvchsX6VmQk8
 /85rYeTNKsJBKQ==;
From: Ludovic =?UTF-8?Q?Court=C3=A8s?= <ludo@gnu.org>
Date: Wed, 11 Dec 2024 00:34:46 +0100
Message-ID: <54a8cf29cc3853916105da244a8c56b0b060fc29.1733873391.git.ludo@gnu.org>
X-Mailer: git-send-email 2.46.0
In-Reply-To: <cover.1733873391.git.ludo@gnu.org>
References: <cover.1733873391.git.ludo@gnu.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
X-BeenThere: debbugs-submit@debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
X-BeenThere: guix-patches@gnu.org
List-Id: <guix-patches.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/guix-patches>,
 <mailto:guix-patches-request@gnu.org?subject=unsubscribe>
List-Archive: <https://lists.gnu.org/archive/html/guix-patches>
List-Post: <mailto:guix-patches@gnu.org>
List-Help: <mailto:guix-patches-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/guix-patches>,
 <mailto:guix-patches-request@gnu.org?subject=subscribe>
Errors-To: guix-patches-bounces+larch=yhetil.org@gnu.org
Sender: guix-patches-bounces+larch=yhetil.org@gnu.org
X-Migadu-Flow: FLOW_IN
X-Migadu-Country: US
X-Migadu-Spam-Score: -0.86
X-Spam-Score: -0.86
X-Migadu-Queue-Id: E9FD01A8C8
X-Migadu-Scanner: mx12.migadu.com
X-TUID: erHnbWzg1VtL

This can be tested with:

  guix shell libfaketime -- faketime 2019-01-01 \
    guix time-machine -q --no-check-certificate

* guix/scripts/time-machine.scm (%options, show-help): Add
‘--no-check-certificate’.
(%default-options): Add ‘verify-certificate?’ key.
(guix-time-machine): Honor it.

Change-Id: I25a29d03d4df78d1618c6a416ec85fd8e90fec6c
---
 guix/scripts/time-machine.scm | 14 ++++++++++++--
 1 file changed, 12 insertions(+), 2 deletions(-)

diff --git a/guix/scripts/time-machine.scm b/guix/scripts/time-machine.scm
index 21145239d4..0fd2d15eb5 100644
--- a/guix/scripts/time-machine.scm
+++ b/guix/scripts/time-machine.scm
@@ -70,6 +70,9 @@ (define (show-help)
   (display (G_ "
       --disable-authentication
                          disable channel authentication"))
+  (display (G_ "
+      --no-check-certificate
+                         do not validate the certificate of HTTPS servers"))
   (newline)
   (show-build-options-help)
   (newline)
@@ -101,6 +104,9 @@ (define %options
          (option '("disable-authentication") #f #f
                  (lambda (opt name arg result)
                    (alist-cons 'authenticate-channels? #f result)))
+         (option '("no-check-certificate") #f #f
+                 (lambda (opt name arg result)
+                   (alist-cons 'verify-certificate? #f result)))
          (option '(#\h "help") #f #f
                  (lambda args
                    (leave-on-EPIPE (show-help))
@@ -120,6 +126,7 @@ (define %default-options
     (print-extended-build-trace? . #t)
     (multiplexed-build-output? . #t)
     (authenticate-channels? . #t)
+    (verify-certificate? . #t)
     (graft? . #t)
     (debug . 0)
     (verbosity . 1)))
@@ -180,7 +187,8 @@ (define-command (guix-time-machine . args)
             (command-line (assoc-ref opts 'exec))
             (ref          (assoc-ref opts 'ref))
             (substitutes?  (assoc-ref opts 'substitutes?))
-            (authenticate? (assoc-ref opts 'authenticate-channels?)))
+            (authenticate? (assoc-ref opts 'authenticate-channels?))
+            (verify-certificate? (assoc-ref opts 'verify-certificate?)))
        (let* ((directory
                (with-store store
                  (with-status-verbosity (assoc-ref opts 'verbosity)
@@ -195,7 +203,9 @@ (define-command (guix-time-machine . args)
                                               #:reference-channels
                                               %reference-channels
                                               #:validate-channels
-                                              validate-guix-channel)))))
+                                              validate-guix-channel
+                                              #:verify-certificate?
+                                              verify-certificate?)))))
               (executable (string-append directory "/bin/guix")))
          (if command-line
              (apply execl (cons* executable executable command-line))
-- 
2.46.0