HCoop / jackhill / guix / guix.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 872898f) | patch
pull: Protect against downgrade attacks.
authorLudovic Courtès <ludo@gnu.org>
Wed, 20 May 2020 21:18:09 +0000 (23:18 +0200)
committerLudovic Courtès <ludo@gnu.org>
Sun, 24 May 2020 22:00:28 +0000 (00:00 +0200)
commit9744cc7b4636fafb772c94adb8f05961b5b39f16
treea06d57b21b197ebe1d3f9a85d81d6ecc795146a1tree | snapshot (tar.gz zip)
parent872898f768ae6d3b41eb93c5e183624bd1d157ffcommit | diff
pull: Protect against downgrade attacks.

* guix/scripts/pull.scm (%default-options): Add 'validate-pull'.
(%options, show-help): Add '--allow-downgrades'.
(warn-about-backward-updates): New procedure.
(guix-pull): Pass #:current-channels and #:validate-pull to
'latest-channel-instances'.
* guix/channels.scm (ensure-forward-channel-update): Add hint for
when (channel-commit channel) is true.
* doc/guix.texi (Invoking guix pull): Document '--allow-downgrades'.
doc/guix.texi diff | blob | blame | history
guix/channels.scm diff | blob | blame | history
guix/scripts/pull.scm diff | blob | blame | history
jackhill's copy of GNU Guix: https://guix.gnu.org/