emacs-bug-tracker
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#41425: closed ([PATCH 0/5] Have 'guix pull' protect against downgrad

From: GNU bug Tracking System
Subject: bug#41425: closed ([PATCH 0/5] Have 'guix pull' protect against downgrade attacks)
Date: Sun, 24 May 2020 22:03:02 +0000 
Your message dated Mon, 25 May 2020 00:02:49 +0200
with message-id <address@hidden>
and subject line Re: [bug#41425] [PATCH 0/5] Have 'guix pull' protect against 
downgrade attacks
has caused the debbugs.gnu.org bug report #41425,
regarding [PATCH 0/5] Have 'guix pull' protect against downgrade attacks
to be marked as done.

(If you believe you have received this mail in error, please contact
address@hidden.)


-- 
41425: http://debbugs.gnu.org/cgi/bugreport.cgi?bug=41425
GNU Bug Tracking System
Contact address@hidden with problems
--- Begin Message --- Subject: [PATCH 0/5] Have 'guix pull' protect against downgrade attacks Date: Wed, 20 May 2020 23:38:02 +0200 
Hello!

This patch series aims to protect against “downgrade attacks”, whereby
a “guix pull” command would in fact deploy an older or an unrelated
revision of Guix, potentially leading you to install vulnerable or
malicious software.

By default ‘guix pull’ would now error out if the target commit of a
channel is not a descendant of the currently-used commit, according to
the commit graph.  There’s an option to bypass that.  ‘guix
time-machine’ behavior is unchanged though: it never complains.

This is generally useful and it’s a requirement for authenticated
checkouts as discussed in <https://issues.guix.gnu.org/22883>,
otherwise one could easily escape the intended authentication scheme
by branching and providing a different ‘.guix-authorizations’ file.

Feedback welcome!

Ludo’.

Ludovic Courtès (5):
  git: Add 'commit-relation'.
  channels: 'latest-channel-instances' doesn't leak internal state.
  git: 'update-cached-checkout' returns the commit relation.
  channels: 'latest-channel-instances' guards against non-forward
    updates.
  pull: Protect against downgrade attacks.

 doc/guix.texi         |  15 ++++
 guix/channels.scm     | 156 ++++++++++++++++++++++++++++++------------
 guix/git.scm          |  37 ++++++++--
 guix/import/opam.scm  |   2 +-
 guix/scripts/pull.scm |  35 +++++++++-
 tests/channels.scm    |  47 +++++++++++--
 tests/git.scm         |  42 +++++++++++-
 7 files changed, 276 insertions(+), 58 deletions(-)

-- 
2.26.2

--- End Message ---
--- Begin Message --- Subject: Re: [bug#41425] [PATCH 0/5] Have 'guix pull' protect against downgrade attacks Date: Mon, 25 May 2020 00:02:49 +0200 User-agent: Gnus/5.13 (Gnus v5.13) Emacs/26.3 (gnu/linux) 
Pushed!

  9744cc7b46 pull: Protect against downgrade attacks.
  872898f768 channels: 'latest-channel-instances' guards against non-forward 
updates.
  8d1d56578a git: 'update-cached-checkout' returns the commit relation.
  9b049de84e channels: 'latest-channel-instances' doesn't leak internal state.
  c098c11be8 git: Add 'commit-relation'.

One step closer to addressing <https://issues.guix.gnu.org/22883>…

Ludo’.

--- End Message ---
reply via email to
[Prev in Thread] Current Thread [Next in Thread]