[bug#53901] [PATCH] publish: Sign only normative narinfo fields.

guix-patches

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug#53901] [PATCH] publish: Sign only normative narinfo fields.

From:	pukkamustard
Subject:	[bug#53901] [PATCH] publish: Sign only normative narinfo fields.
Date:	Fri, 11 Feb 2022 10:30:45 +0000

Ludovic Courtès <ludo@gnu.org> writes:

> [...]
> 
> At this point, the client (narinfo consumer) cannot assume that the
> server signs only the normative part, and only in a specific order; this
> would be a protocol change (in fact, with this patch, ‘guix publish’
> actually also signs the ‘Deriver’ field although that’s not a normative
> field; maybe I should take ‘Deriver’ out.)
>
> So I’m afraid we cannot clean that up yet.

Ah, yes. I didn't think of the case where the server is older than the
client.

Thank you for your explanation!

-pukkamustard

[Prev in Thread]

Current Thread

[Next in Thread]

[bug#53901] [PATCH] publish: Sign only normative narinfo fields., Ludovic Courtès, 2022/02/09
- [bug#53901] [PATCH] publish: Sign only normative narinfo fields., Christopher Baines, 2022/02/09
  - [bug#53901] [PATCH] publish: Sign only normative narinfo fields., Ludovic Courtès, 2022/02/09
- [bug#53901] [PATCH] publish: Sign only normative narinfo fields., pukkamustard, 2022/02/10
  - [bug#53901] [PATCH] publish: Sign only normative narinfo fields., Ludovic Courtès, 2022/02/10
    - [bug#53901] [PATCH] publish: Sign only normative narinfo fields., pukkamustard <=
- bug#53901: [PATCH] publish: Sign only normative narinfo fields., Ludovic Courtès, 2022/02/14

Prev by Date: [bug#53930] [PATCH] gnu: Add emacs-nyan-mode.
Next by Date: [bug#53939] [PATCH] gnu: emacs-subed: Update to 1.0.3.
Previous by thread: [bug#53901] [PATCH] publish: Sign only normative narinfo fields.
Next by thread: bug#53901: [PATCH] publish: Sign only normative narinfo fields.
Index(es):
- Date
- Thread