From debbugs-submit-bounces@debbugs.gnu.org Fri Dec 02 13:13:57 2016 Received: (at 25094) by debbugs.gnu.org; 2 Dec 2016 18:13:57 +0000 Received: from localhost ([127.0.0.1]:50597 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1cCsLN-0003nT-5O for submit@debbugs.gnu.org; Fri, 02 Dec 2016 13:13:57 -0500 Received: from out5-smtp.messagingengine.com ([66.111.4.29]:38729) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1cCsLK-0003nH-Ax for 25094@debbugs.gnu.org; Fri, 02 Dec 2016 13:13:55 -0500 Received: from compute4.internal (compute4.nyi.internal [10.202.2.44]) by mailout.nyi.internal (Postfix) with ESMTP id B7190206B8; Fri, 2 Dec 2016 13:13:53 -0500 (EST) Received: from frontend2 ([10.202.2.161]) by compute4.internal (MEProxy); Fri, 02 Dec 2016 13:13:53 -0500 DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=famulari.name; h= cc:content-transfer-encoding:content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-me-sender :x-me-sender:x-sasl-enc:x-sasl-enc; s=mesmtp; bh=URRg0xMq7HHDEZ8 +MVwIvHiuHsQ=; b=qe0K/A/pn+YK+XCfJW46Hu7kPFoS8UTy2c1k73Xw30NDrCC +E4mmsnyIinK7u5/DjYt1wP97KQA5ueDZUAjjmI0rpR/QdOCrDYuEyZUhF2hMFxU s85B0BLV/bQV8YsB3EsAaNo7xIgDs9EktgRoVPpdfO16+Zmkh5o9lLfTzY1Q= DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-me-sender:x-me-sender:x-sasl-enc:x-sasl-enc; s= smtpout; bh=URRg0xMq7HHDEZ8+MVwIvHiuHsQ=; b=gqr02prSK2cIh63qSAn8 750qYNx/YkrBNm58Qkcs/0XUdLn6/+St6QGqM+EA24OX9YiDClQi0se7i1oJWsda EGsB2O/5nqcw889AWu1m0cbTO7VVg2B5r6ahTcnQ58Yd/6d1BK4sOxEJuhsD/8a8 3iW7GtDSx5mRtg9cAUFdpA4= X-ME-Sender: X-Sasl-enc: jyDzT1X7m9N6vRmLhkzUzm1dyrgSAyLlyX/BD5kh7sve 1480702433 Received: from localhost (c-73-188-17-148.hsd1.pa.comcast.net [73.188.17.148]) by mail.messagingengine.com (Postfix) with ESMTPA id 6EAC8247ED; Fri, 2 Dec 2016 13:13:53 -0500 (EST) Date: Fri, 2 Dec 2016 13:13:51 -0500 From: Leo Famulari To: Hartmut Goebel Subject: Re: bug#25094: Add comments to archive keys and acls Message-ID: <20161202181351.GA30572@jasmine> References: <5841B184.4050802@crazy-compilers.com> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <5841B184.4050802@crazy-compilers.com> User-Agent: Mutt/1.7.1 (2016-10-04) X-Spam-Score: -0.7 (/) X-Debbugs-Envelope-To: 25094 Cc: 25094@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -0.7 (/) On Fri, Dec 02, 2016 at 06:38:12PM +0100, Hartmut Goebel wrote: > Hi, > > the keys for authenticating an archive currently do not hold any > comment. This makes it hard to track acls and remove certain keys if > required. Indeed, this makes key management a little harder than it needs to be. > Please implement some way to add and change the comment on keys in > /etc/guix/ and in /etc/guix/acl. > > Proposed usage when generating the key: > guix archive --generate-key=… --comment "store.example.com" > > Proposed usage when importing the key and overwriting any existing comment > > guix archive --authorize --comment "store.example.com" > > For now, since we have no commands for key management, these would be > enough IMO. Existing commenty an easily be changed in the file, so for > now we do not need a tool for this. I think that the comment should either be signed somehow, or the field name should be "untrusted-comment". OpenBSD's signify tool (which we have a port of in Guix) does this: ------ $ cat foo.pub untrusted comment: Leo's example public key RWRrY3me0s1DYDBfpcUKZ+ul9m8FgdZfz5+cHjxBabEsvDrjL/ecTeUL ------ Minisign, which is a 3rd party tool compatible with signify, also has trusted comments: https://github.com/jedisct1/minisign/blob/master/src/manpage.md#notes