From: Marcel van der Boom <marcel@hsdev.com>
To: Cayetano Santos <csantosb@inventati.org>
Cc: help-guix@gnu.org
Subject: Re: Authenticate a channel
Date: Fri, 10 Jan 2025 12:22:31 +0100 [thread overview]
Message-ID: <878qridibs.fsf@hsdev.com> (raw)
In-Reply-To: <875xn1nglo.fsf@inventati.org> (Cayetano Santos's message of "Mon, 30 Dec 2024 19:57:55 +0100")
Not 100% sure, but I think this applies to my situation:
"Pay attention to merges in particular: merge commits are
considered authentic if and only if they are signed by a key
present in the .guix-authorizations file of both branches."
My local (channel) repo is just the guix sources with some
patches, which obviously will lead to merge commits on almost
every pull.
Is this analysis correct?
If so, how do I change this? My goal is to have a local copy to
put patches in. This works easier in some cases rather than having
a manifest.
[Cayetano Santos]:
>>dim. 29 déc. 2024 at 14:04, Marcel van der Boom
>><marcel@hsdev.com> wrote:
>> I have issues with this too. On every git pull and guix pull I
>> get messages that my key is
>> missing, although I did add it locally to the keyring branch.
>>
>> Is there a procedure documented somewhere on how to make sure
>> the signature is present and
>> correct? It feels like I am just missing something small here.
> Most up to date documentation is here,
> https://guix.gnu.org/manual/devel/en/html_node/Specifying-Channel-Authorizations.html
>> Some unknowns for me:
>> - are subkeys supported? anything special needed?
>> - it seems there is a file-naming convention on the keyring
>> branch for the keys?
>> - do i need to pull the keyring in manually over time of does
>> the machinery take care of
>> this?
> Have you checked with other public channels ?
next prev parent reply other threads:[~2025-01-10 11:23 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-12-26 16:48 Authenticate a channel Jeremy Korwin-Zmijowski
2024-12-28 18:01 ` Ludovic Courtès
2024-12-29 13:04 ` Marcel van der Boom
2024-12-30 18:57 ` Cayetano Santos
2025-01-01 12:03 ` Marek Paśnikowski
2025-01-02 9:07 ` Jeremy Korwin-Zmijowski
2025-01-10 11:22 ` Marcel van der Boom [this message]
2025-01-10 12:22 ` Tobias Geerinckx-Rice
2025-01-10 12:51 ` Tobias Geerinckx-Rice
2025-01-10 13:47 ` Marcel van der Boom
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=878qridibs.fsf@hsdev.com \
--to=marcel@hsdev.com \
--cc=csantosb@inventati.org \
--cc=help-guix@gnu.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this external index
https://git.savannah.gnu.org/cgit/guix.git
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.