.guix-authorizations

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151

;; This file, which is best viewed as -*- Scheme -*-, lists the OpenPGP keys
;; currently authorized to sign commits in this repository.

(authorizations
 (version 0)

 (("AD17 A21E F8AE D8F1 CC02  DBD9 F7D5 C9BF 765C 61E3"
   (name "andreas"))
  ("2A39 3FFF 68F4 EF7A 3D29  12AF 6F51 20A0 22FB B2D5"
   (name "ajgrf"))
  ("306F CB8F 2C01 C25D 29D3  0556 61EF 502E F602 52F2"
   (name "alexvong1995"))
  ("4FB9 9F49 2B12 A365 7997  E664 8246 0C08 2A0E E98F"
   (name "alezost"))
  ("50F3 3E2E 5B0C 3D90 0424  ABE8 9BDC F497 A4BB CC7F"
   (name "ambrevar"))
  ("27D5 86A4 F890 0854 329F  F09F 1260 E464 82E6 3562"
   (name "apteryx"))
  ("7F73 0343 F2F0 9F3C 77BF  79D3 2E25 EE8B 6180 2BB3"
   (name "arunisaac"))
  (;; primary: "3B12 9196 AE30 0C3C 0E90  A26F A715 5567 3271 9948"
   "9A2B 401E D001 0650 1584  BAAC 8BC4 F447 6E8A 8E00"
   (name "atheia"))
  (;; primary: "BE62 7373 8E61 6D6D 1B3A  08E8 A21A 0202 4881 6103"
   "39B3 3C8D 9448 0D2D DCC2  A498 8B44 A0CD C7B9 56F2"
   (name "bandali"))
  (;; primary: "34FF 38BC D151 25A6 E340  A0B5 3453 2F9F AFCA 8B8E"
   "A0C5 E352 2EF8 EF5C 64CD  B7F0 FD73 CAC7 19D3 2566"
   (name "bavier"))
  ("BCF8 F737 2CED 080A 67EB  592D 2A6A D9F4 AAC2 0DF6"
   (name "benwoodcroft"))
  ("45CC 63B8 5258 C9D5 5F34  B239 D37D 0EA7 CECC 3912"
   (name "biscuolo"))
  ("7988 3B9F 7D6A 4DBF 3719  0367 2506 A96C CF63 0B21"
   (name "boskovits"))
  ("E82A C026 95D6 FF02 43CA  1E5C F6C5 2DD1 BA27 CB87"
   (name "brettgilio"))
  (;; primary: "8929 BBC5 73CD 9206 3DDD 979D 3D36 CAA0 116F 0F99"
   "1C9B F005 1A1A 6A44 5257 599A A949 03A1 66A1 8FAE"
   (name "bricewge"))
  (;; primary: "0401 7A2A 6D9A 0CCD C81D  8EC2 96AB 007F 1A7E D999"
   "09CD D25B 5244 A376 78F6  EEA8 0CC5 2153 1979 91A5"
   (name "carl"))
  ("3E89 EEE7 458E 720D 9754  E0B2 5E28 A33B 0B84 F577"
   (name "cbaines"))
  ("3CE4 6455 8A84 FDC6 9DB4  0CFB 090B 1199 3D9A EBB5"
   (name "civodul"))
  ("510A 8628 E2A7 7678 8F8C  709C 4BC0 2592 5FF8 F4D3"
   ( Ludovic Courtès
 
* config-daemon.ac: Add check for sys/syscall.h, remove check
  tr1/unordered_set.

The nix/ part is a squashed commit of the following:

commit e531520ddcd54903bbea0f3ce08dfbed830f40aa
Author: Eelco Dolstra <eelco.dolstra@logicblox.com>
Date:   Tue Jun 2 02:21:54 2015 +0200

    Don't let unprivileged users repair paths

commit 715478fe09a73cec70f5c6f869cac482f004596f
Author: Ludovic Courtès <ludo@gnu.org>
Date:   Mon Jun 1 23:20:11 2015 +0200

    Add a ‘verifyStore’ RPC

    Hello!

    The patch below adds a ‘verifyStore’ RPC with the same signature as the
    current LocalStore::verifyStore method.

    Thanks,
    Ludo’.

    >From aef46c03ca77eb6344f4892672eb6d9d06432041 Mon Sep 17 00:00:00 2001
    From: =?UTF-8?q?Ludovic=20Court=C3=A8s?= <ludo@gnu.org>
    Date: Mon, 1 Jun 2015 23:17:10 +0200
    Subject: [PATCH] Add a 'verifyStore' remote procedure call.

commit 64a998ebcb6ebf8c11efa0a0332cce3d8f1c538e
Author: Eelco Dolstra <eelco.dolstra@logicblox.com>
Date:   Tue Apr 7 13:21:26 2015 +0200

    Revert /nix/store permission back to 01775

    This broke NixOS VM tests.

    Mostly reverts 27b7b94923d2f207781b438bb7a57669bddf7d2b,
    5ce50cd99e740d0d0f18c30327ae687be9356553,
    afa433e58c3fe6029660a43fdc2073c9d15b4210.

commit 44f1b1851ccf836411ca09f5ebc50fc08d92e7e8
Author: Eelco Dolstra <eelco.dolstra@logicblox.com>
Date:   Thu Apr 2 16:59:40 2015 +0200

    Chroot builds: Provide world-readable /nix/store

    This was causing NixOS VM tests to fail mysteriously since
    5ce50cd99e740d0d0f18c30327ae687be9356553. Nscd could (sometimes) no
    longer read /etc/hosts:

    open("/etc/hosts", O_RDONLY|O_CLOEXEC) = -1 EACCES (Permission denied)

    Probably there was some wacky interaction between the guest kernel and
    the 9pfs implementation in QEMU.

commit b6ecbd266f614288db3468f9f054abea694105b1
Author: Eelco Dolstra <eelco.dolstra@logicblox.com>
Date:   Wed Mar 25 17:06:12 2015 +0100

    addToStore(): Take explicit name argument

commit 1f595ba474d8112e73df1ef7578014e59ebfccd0
Author: Eelco Dolstra <eelco.dolstra@logicblox.com>
Date:   Tue Mar 24 11:35:53 2015 +0100

    Tighten permissions on chroot directories

commit ba5888bccd2c5dfd0de73b91c3a5c18fa8c4866e
Author: Daniel Hahler <git@thequod.de>
Date:   Fri Mar 6 16:39:48 2015 +0100

    Fix typos: s/the the/the/

commit 67af480244250409c8cf41e66a4995258b8ccc9b
Author: Eelco Dolstra <eelco.dolstra@logicblox.com>
Date:   Mon Feb 23 15:41:41 2015 +0100

    Use chroots for all derivations

    If ‘build-use-chroot’ is set to ‘true’, fixed-output derivations are
    now also chrooted. However, unlike normal derivations, they don't get
    a private network namespace, so they can still access the
    network. Also, the use of the ‘__noChroot’ derivation attribute is
    no longer allowed.

    Setting ‘build-use-chroot’ to ‘relaxed’ gives the old behaviour.

    Note for Guix: unlike Nix commit 99897f6, we keep 'settings.useChroot'.

commit 638f3675e140af1214b82ff162baadd3ef1bb6e6
Author: Harald van Dijk <harald@gigawatt.nl>
Date:   Fri Feb 13 16:05:49 2015 +0000

    Use pivot_root in addition to chroot when possible

    chroot only changes the process root directory, not the mount namespace root
    directory, and it is well-known that any process with chroot capability can
    break out of a chroot "jail". By using pivot_root as well, and unmounting the
    original mount namespace root directory, breaking out becomes impossible.

    Non-root processes typically have no ability to use chroot() anyway, but they
    can gain that capability through the use of clone() or unshare(). For security
    reasons, these syscalls are limited in functionality when used inside a normal
    chroot environment. Using pivot_root() this way does allow those syscalls to be
    put to their full use.

commit 8ab23f2924b70ac572ad0bcf950b4649361bfae2
Author: Eelco Dolstra <eelco.dolstra@logicblox.com>
Date:   Tue Feb 3 18:56:47 2015 +0100

    Simplify parseHash32

commit 70c3d2f1767a724db1e66d137a1d6b4cdee00738
Author: Eelco Dolstra <eelco.dolstra@logicblox.com>
Date:   Tue Feb 3 18:35:11 2015 +0100

    Simplify printHash32

commit 7a7a15877f8f391a8a8a74f7a6e919a07dc19237
Author: Eelco Dolstra <eelco.dolstra@logicblox.com>
Date:   Thu Jan 8 16:59:22 2015 +0100

    Doh^2

commit 8c94a864d806647736410326d496a8d668109f5a
Author: Eelco Dolstra <eelco.dolstra@logicblox.com>
Date:   Thu Jan 8 16:49:31 2015 +0100

    Doh

commit 35605c4407a677752ed51a0f829cc0f42047b115
Author: Eelco Dolstra <eelco.dolstra@logicblox.com>
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151	;; This file, which is best viewed as -- Scheme --, lists the OpenPGP keys ;; currently authorized to sign commits in this repository. (authorizations (version 0) (("AD17 A21E F8AE D8F1 CC02 DBD9 F7D5 C9BF 765C 61E3" (name "andreas")) ("2A39 3FFF 68F4 EF7A 3D29 12AF 6F51 20A0 22FB B2D5" (name "ajgrf")) ("306F CB8F 2C01 C25D 29D3 0556 61EF 502E F602 52F2" (name "alexvong1995")) ("4FB9 9F49 2B12 A365 7997 E664 8246 0C08 2A0E E98F" (name "alezost")) ("50F3 3E2E 5B0C 3D90 0424 ABE8 9BDC F497 A4BB CC7F" (name "ambrevar")) ("27D5 86A4 F890 0854 329F F09F 1260 E464 82E6 3562" (name "apteryx")) ("7F73 0343 F2F0 9F3C 77BF 79D3 2E25 EE8B 6180 2BB3" (name "arunisaac")) (;; primary: "3B12 9196 AE30 0C3C 0E90 A26F A715 5567 3271 9948" "9A2B 401E D001 0650 1584 BAAC 8BC4 F447 6E8A 8E00" (name "atheia")) (;; primary: "BE62 7373 8E61 6D6D 1B3A 08E8 A21A 0202 4881 6103" "39B3 3C8D 9448 0D2D DCC2 A498 8B44 A0CD C7B9 56F2" (name "bandali")) (;; primary: "34FF 38BC D151 25A6 E340 A0B5 3453 2F9F AFCA 8B8E" "A0C5 E352 2EF8 EF5C 64CD B7F0 FD73 CAC7 19D3 2566" (name "bavier")) ("BCF8 F737 2CED 080A 67EB 592D 2A6A D9F4 AAC2 0DF6" (name "benwoodcroft")) ("45CC 63B8 5258 C9D5 5F34 B239 D37D 0EA7 CECC 3912" (name "biscuolo")) ("7988 3B9F 7D6A 4DBF 3719 0367 2506 A96C CF63 0B21" (name "boskovits")) ("E82A C026 95D6 FF02 43CA 1E5C F6C5 2DD1 BA27 CB87" (name "brettgilio")) (;; primary: "8929 BBC5 73CD 9206 3DDD 979D 3D36 CAA0 116F 0F99" "1C9B F005 1A1A 6A44 5257 599A A949 03A1 66A1 8FAE" (name "bricewge")) (;; primary: "0401 7A2A 6D9A 0CCD C81D 8EC2 96AB 007F 1A7E D999" "09CD D25B 5244 A376 78F6 EEA8 0CC5 2153 1979 91A5" (name "carl")) ("3E89 EEE7 458E 720D 9754 E0B2 5E28 A33B 0B84 F577" (name "cbaines")) ("3CE4 6455 8A84 FDC6 9DB4 0CFB 090B 1199 3D9A EBB5" (name "civodul")) ("510A 8628 E2A7 7678 8F8C 709C 4BC0 2592 5FF8 F4D3" (	Ludovic Courtès
	* config-daemon.ac: Add check for sys/syscall.h, remove check tr1/unordered_set. The nix/ part is a squashed commit of the following: commit e531520ddcd54903bbea0f3ce08dfbed830f40aa Author: Eelco Dolstra <eelco.dolstra@logicblox.com> Date: Tue Jun 2 02:21:54 2015 +0200 Don't let unprivileged users repair paths commit 715478fe09a73cec70f5c6f869cac482f004596f Author: Ludovic Courtès <ludo@gnu.org> Date: Mon Jun 1 23:20:11 2015 +0200 Add a ‘verifyStore’ RPC Hello! The patch below adds a ‘verifyStore’ RPC with the same signature as the current LocalStore::verifyStore method. Thanks, Ludo’. >From aef46c03ca77eb6344f4892672eb6d9d06432041 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Ludovic=20Court=C3=A8s?= <ludo@gnu.org> Date: Mon, 1 Jun 2015 23:17:10 +0200 Subject: [PATCH] Add a 'verifyStore' remote procedure call. commit 64a998ebcb6ebf8c11efa0a0332cce3d8f1c538e Author: Eelco Dolstra <eelco.dolstra@logicblox.com> Date: Tue Apr 7 13:21:26 2015 +0200 Revert /nix/store permission back to 01775 This broke NixOS VM tests. Mostly reverts 27b7b94923d2f207781b438bb7a57669bddf7d2b, 5ce50cd99e740d0d0f18c30327ae687be9356553, afa433e58c3fe6029660a43fdc2073c9d15b4210. commit 44f1b1851ccf836411ca09f5ebc50fc08d92e7e8 Author: Eelco Dolstra <eelco.dolstra@logicblox.com> Date: Thu Apr 2 16:59:40 2015 +0200 Chroot builds: Provide world-readable /nix/store This was causing NixOS VM tests to fail mysteriously since 5ce50cd99e740d0d0f18c30327ae687be9356553. Nscd could (sometimes) no longer read /etc/hosts: open("/etc/hosts", O_RDONLY\|O_CLOEXEC) = -1 EACCES (Permission denied) Probably there was some wacky interaction between the guest kernel and the 9pfs implementation in QEMU. commit b6ecbd266f614288db3468f9f054abea694105b1 Author: Eelco Dolstra <eelco.dolstra@logicblox.com> Date: Wed Mar 25 17:06:12 2015 +0100 addToStore(): Take explicit name argument commit 1f595ba474d8112e73df1ef7578014e59ebfccd0 Author: Eelco Dolstra <eelco.dolstra@logicblox.com> Date: Tue Mar 24 11:35:53 2015 +0100 Tighten permissions on chroot directories commit ba5888bccd2c5dfd0de73b91c3a5c18fa8c4866e Author: Daniel Hahler <git@thequod.de> Date: Fri Mar 6 16:39:48 2015 +0100 Fix typos: s/the the/the/ commit 67af480244250409c8cf41e66a4995258b8ccc9b Author: Eelco Dolstra <eelco.dolstra@logicblox.com> Date: Mon Feb 23 15:41:41 2015 +0100 Use chroots for all derivations If ‘build-use-chroot’ is set to ‘true’, fixed-output derivations are now also chrooted. However, unlike normal derivations, they don't get a private network namespace, so they can still access the network. Also, the use of the ‘__noChroot’ derivation attribute is no longer allowed. Setting ‘build-use-chroot’ to ‘relaxed’ gives the old behaviour. Note for Guix: unlike Nix commit 99897f6, we keep 'settings.useChroot'. commit 638f3675e140af1214b82ff162baadd3ef1bb6e6 Author: Harald van Dijk <harald@gigawatt.nl> Date: Fri Feb 13 16:05:49 2015 +0000 Use pivot_root in addition to chroot when possible chroot only changes the process root directory, not the mount namespace root directory, and it is well-known that any process with chroot capability can break out of a chroot "jail". By using pivot_root as well, and unmounting the original mount namespace root directory, breaking out becomes impossible. Non-root processes typically have no ability to use chroot() anyway, but they can gain that capability through the use of clone() or unshare(). For security reasons, these syscalls are limited in functionality when used inside a normal chroot environment. Using pivot_root() this way does allow those syscalls to be put to their full use. commit 8ab23f2924b70ac572ad0bcf950b4649361bfae2 Author: Eelco Dolstra <eelco.dolstra@logicblox.com> Date: Tue Feb 3 18:56:47 2015 +0100 Simplify parseHash32 commit 70c3d2f1767a724db1e66d137a1d6b4cdee00738 Author: Eelco Dolstra <eelco.dolstra@logicblox.com> Date: Tue Feb 3 18:35:11 2015 +0100 Simplify printHash32 commit 7a7a15877f8f391a8a8a74f7a6e919a07dc19237 Author: Eelco Dolstra <eelco.dolstra@logicblox.com> Date: Thu Jan 8 16:59:22 2015 +0100 Doh^2 commit 8c94a864d806647736410326d496a8d668109f5a Author: Eelco Dolstra <eelco.dolstra@logicblox.com> Date: Thu Jan 8 16:49:31 2015 +0100 Doh commit 35605c4407a677752ed51a0f829cc0f42047b115 Author: Eelco Dolstra <eelco.dolstra@logicblox.com>