futurile/guix-play
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
guix-play/guix/scripts
History
Ludovic Courtès bc3c41ce36
download: Verify TLS certificates unless asked not to. 
Fixes <http://bugs.gnu.org/24466>.
Reported by Leo Famulari <leo@famulari.name>.

* guix/build/download.scm (%x509-certificate-directory): New variable.
(make-credendials-with-ca-trust-files, peer-certificate)
(assert-valid-server-certificate, print-tls-certificate-error): New
procedures.  Add 'print-tls-certificate-error' as an exception printer
for 'tls-certificate-error'.
(tls-wrap): Add #:verify-certificate? parameter and honor it.
(open-connection-for-uri): Likewise.
(http-fetch): Likewise.
(url-fetch): Likewise.
* guix/download.scm (url-fetch)[builder]: Pass #:verify-certificate? #f.
* guix/scripts/lint.scm (probe-uri): Add case for 'tls-certificate-error'.
(validate-uri): Likewise.
* doc/guix.texi (Invoking guix download): Mention 'SSL_CERT_DIR'.
2016-11-07 23:39:01 +01:00
..
container
scripts: container: Fix 'exec' command line parsing.
2015-11-03 18:05:43 -05:00
import
ui: Do not shadow '_' where it's used as a literal syntax match.
2016-09-20 23:22:42 +09:00
archive.scm
Use (ice-9 binary-ports) instead of (rnrs io ports).
2016-10-19 15:54:10 +02:00
authenticate.scm
Use (ice-9 binary-ports) instead of (rnrs io ports).
2016-10-19 15:54:10 +02:00
build.scm
guix build: Add '--with-graft'.
2016-10-17 23:59:02 +02:00
challenge.scm
challenge: Disable grafting.
2016-07-14 19:07:07 +02:00
container.scm
scripts: Add 'container' subcommand.
2015-11-01 18:20:04 -05:00
download.scm
Use (ice-9 binary-ports) instead of (rnrs io ports).
2016-10-19 15:54:10 +02:00
edit.scm
edit: Do not honor 'GUIX_BUILD_OPTIONS'.
2016-08-19 17:34:37 +02:00
environment.scm
guix scripts: Disable grafting on dry runs.
2016-08-28 16:22:19 +02:00
gc.scm
guix gc: Display of saved space for garbage collection.
2016-07-16 14:41:39 +02:00
graph.scm
graph: Add '%referrer-node-type'.
2016-10-15 23:46:39 +02:00
hash.scm
guix hash: Interpret '-' as standard input.
2016-10-28 22:30:17 +02:00
import.scm
import: Gracefully report import failures.
2016-05-17 14:02:48 +02:00
lint.scm
download: Verify TLS certificates unless asked not to.
2016-11-07 23:39:01 +01:00
offload.scm
Use (ice-9 binary-ports) instead of (rnrs io ports).
2016-10-19 15:54:10 +02:00
package.scm
profiles: Extract a procedure for getting relative generation numbers.
2016-11-06 18:08:53 +01:00
publish.scm
Use (ice-9 binary-ports) instead of (rnrs io ports).
2016-10-19 15:54:10 +02:00
pull.scm
utils: Add 'switch-symlinks', moved from (guix ui).
2015-10-27 00:01:20 +01:00
refresh.scm
Use (ice-9 binary-ports) instead of (rnrs io ports).
2016-10-19 15:54:10 +02:00
size.scm
size: Fix corner case with multiple items on the command line.
2016-07-29 22:32:04 +02:00
substitute.scm
Use (ice-9 binary-ports) instead of (rnrs io ports).
2016-10-19 15:54:10 +02:00
system.scm
system: Add 'guix system' actions: switch-generation and roll-back.
2016-11-06 18:08:53 +01:00