[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
bug#22883: Authenticating a Git checkout
|
From: |
Ludovic Courtès |
|
Subject: |
bug#22883: Authenticating a Git checkout |
|
Date: |
Mon, 04 May 2020 10:03:19 +0200 |
|
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/26.3 (gnu/linux) |
Hi!
Ludovic Courtès <address@hidden> skribis:
> Done the API cleanup. I’ll go ahead and push the current ‘wip-openpgp’
> branch (squashing commits marked as such) tomorrow if there are no
> objections.
Pushed on master!
4a84deda74 doc: Recommend against SHA1 OpenPGP signatures.
84133320b8 doc: Document committer authorization.
05d973eef2 openpgp: Raise error conditions instead of calling 'error'.
041dc3a9c0 git-authenticate: Load the keyring from the repository.
92db1036b7 git-authenticate: Load the list of authorized keys from the tree.
bee5b7a0f8 .guix-authorizations: Augment.
051a45e642 git-authenticate: Use (guix openpgp).
b835e158d5 openpgp: Add 'string->openpgp-packet'.
bd8126558d openpgp: 'lookup-key-by-{id,fingerprint}' return the key first.
b45fa0a123 openpgp: 'verify-openpgp-signature' looks up by fingerprint when
possible.
efe1f0122c openpgp: Add 'lookup-key-by-fingerprint'.
7b2b3a13cc openpgp: Store the issuer key id and fingerprint in
<openpgp-signature>.
4459c7859c openpgp: Decode the issuer-fingerprint signature subpacket.
43408e304f Add (guix openpgp).
c91e27c608 Add '.guix-authorizations'.
> The formats and mechanisms are not set in stone until this is
> generalized to channels, but we’re getting there. Now’s a good time to
> raise any concerns you may have, comrades!
Ludo’.