GNU bug report logs - #71678
Support git commits signed with ssh keys in guix git authenticate

Previous Next

Package: guix;

Reported by: MSavoritias <email <at> msavoritias.me>

Date: Thu, 20 Jun 2024 14:02:01 UTC

Severity: normal

Done: jgart <jgart <at> dismail.de>

Bug is archived. No further changes may be made.

To add a comment to this bug, you must first unarchive it, by sending
a message to control AT debbugs.gnu.org, with unarchive 71678 in the body.
You can then email your comments to 71678 AT debbugs.gnu.org in the normal way.

Toggle the display of automated, internal messages from the tracker.

View this report as an mbox folder, status mbox, maintainer mbox

Report forwarded to bug-guix <at> gnu.org:
bug#71678; Package guix. (Thu, 20 Jun 2024 14:02:02 GMT) Full text and rfc822 format available.
Acknowledgement sent to MSavoritias <email <at> msavoritias.me>:
New bug report received and forwarded. Copy sent to bug-guix <at> gnu.org. (Thu, 20 Jun 2024 14:02:02 GMT) Full text and rfc822 format available.

Message #5 received at submit <at> debbugs.gnu.org (full text, mbox):

From: MSavoritias <email <at> msavoritias.me>
To: bug-guix <at> gnu.org
Subject: Support git commits signed with ssh keys in guix git authenticate
Date: Thu, 20 Jun 2024 17:00:44 +0300

Hey,

I sign all my commits and tags and such in git with SSH keys and I
would like to be able to use `guix git authenticate` to have a secure
channel pull mechanism.

After doing some testing myself and reading the guide here
https://guix.gnu.org/manual/devel/en/html_node/Specifying-Channel-Authorizations.html
it seems Guix doesn't support git commits that have been signed with
SSH keys.

Personally for security reasons mainly I do not use gpnupg and ssh
support has been in git for a while. Namely November 2021.
https://lore.kernel.org/git/xmqq8rxpgwki.fsf <at> gitster.g/

Reading libgit2 issues it seems it is not supported yet
https://github.com/libgit2/libgit2/issues/6397
So lets circle back to this when it actually merges support :D

Regards,
MSavoritias
Reply sent to jgart <jgart <at> dismail.de>:
You have taken responsibility. (Mon, 01 Jul 2024 14:22:02 GMT) Full text and rfc822 format available.
Notification sent to MSavoritias <email <at> msavoritias.me>:
bug acknowledged by developer. (Mon, 01 Jul 2024 14:22:03 GMT) Full text and rfc822 format available.

Message #10 received at 71678-done <at> debbugs.gnu.org (full text, mbox):

From: jgart <jgart <at> dismail.de>
To: 71678-done <at> debbugs.gnu.org
Cc: MSavoritias <email <at> msavoritias.me>
Subject: Re: Support git commits signed with ssh keys in guix git authenticate
Date: Mon, 01 Jul 2024 09:21:02 -0500

Hi MSavoritias,

Feel free to send a patch when libgit2 gets support so we can discuss
this addition further amongst the Guix community. Additionally, I would
send your idea to the guix-devel mailing list before sending patches to
see what people think there.

I am going to close this issue for now to keep the backlog of open issues down
since this will probably be a while.

-- 
all the best,
jgart
bug archived. Request was from Debbugs Internal Request <help-debbugs <at> gnu.org> to internal_control <at> debbugs.gnu.org. (Tue, 30 Jul 2024 11:24:12 GMT) Full text and rfc822 format available.
This bug report was last modified 97 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.