[bug#77667] guix-install.sh: Check fingerprint of downloaded PGP keys before importing

Return-Path: <guix-patches-bounces+patchwork=mira.cbaines.net@gnu.org>
X-Original-To: patchwork@mira.cbaines.net
Delivered-To: patchwork@mira.cbaines.net
Received: by mira.cbaines.net (Postfix, from userid 113)
	id 82B6027BC4B; Tue,  6 May 2025 04:44:41 +0100 (BST)
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on mira.cbaines.net
X-Spam-Level: 
X-Spam-Status: No, score=0.0 required=5.0 tests=none autolearn=unavailable
	version=3.4.6
Received: from lists.gnu.org (lists.gnu.org [209.51.188.17])
	by mira.cbaines.net (Postfix) with ESMTPS id 3A21D27BC49
	for <patchwork@mira.cbaines.net>; Tue,  6 May 2025 04:44:41 +0100 (BST)
Received: from localhost ([::1] helo=lists1p.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.90_1)
	(envelope-from <guix-patches-bounces@gnu.org>)
	id 1uC9Dy-0000I4-FG; Mon, 05 May 2025 23:44:06 -0400
Received: from eggs.gnu.org ([2001:470:142:3::10])
 by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1uC9Dx-0000HV-81
 for guix-patches@gnu.org; Mon, 05 May 2025 23:44:05 -0400
Received: from debbugs.gnu.org ([2001:470:142:5::43])
 by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128)
 (Exim 4.90_1) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1uC9Dw-0005Jr-Th
 for guix-patches@gnu.org; Mon, 05 May 2025 23:44:04 -0400
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed;
 d=debbugs.gnu.org; s=debbugs-gnu-org;
 h=Date:From:MIME-Version:To:In-Reply-To:References:Subject;
 bh=4dn3M+zPIAvLzOPTIy74nkNML49rk6v6EkHIST7VnfE=;
 b=ET3zcRkk+nCbTOny3VTtkdZZwKRC7+hEU0x8iWOaByL/e2cTX7lJ1lzypcglj3yir15Bq9An/rKKOeUm361b2IBgywvwPV6u3LVuNoz+h6j3Oe49v4SawNzKshcG2nt2nbSk+K4++bkZ48WO6oCLFIpCxz2X0Bm+psxLm36tG1mlMITfwuZMmAxo9LyAf13gXXz2p0DVIxa2/NO6T50KRr2EAMThcEZU7lNTkxeUeqfq1JPowfTF9PX7pKjq6S35AMAn4YiThK0koUnj5OCwbIx1eRtVzMaKXCb67KjvRvYxvgwnlxxNl7nqqZVtUIVCecClRU9mpMpOwV3Ea/x9aQ==;
Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2)
 (envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1uC9Dw-0005jk-Ie
 for guix-patches@gnu.org; Mon, 05 May 2025 23:44:04 -0400
X-Loop: help-debbugs@gnu.org
Subject: [bug#77667] guix-install.sh: Check fingerprint of downloaded PGP keys
 before importing
References: 
 <CANpEqw8F__K2sz2BS9wfUk=wRTt+mxW8djxHWgjQTuqL34fZCA@mail.gmail.com>
In-Reply-To: 
 <CANpEqw8F__K2sz2BS9wfUk=wRTt+mxW8djxHWgjQTuqL34fZCA@mail.gmail.com>
Resent-From: Scott Tankard <sptankard@gmail.com>
Original-Sender: "Debbugs-submit" <debbugs-submit-bounces@debbugs.gnu.org>
Resent-CC: guix-patches@gnu.org
Resent-Date: Tue, 06 May 2025 03:44:04 +0000
Resent-Message-ID: <handler.77667.B77667.174650298421874@debbugs.gnu.org>
Resent-Sender: help-debbugs@gnu.org
X-GNU-PR-Message: followup 77667
X-GNU-PR-Package: guix-patches
X-GNU-PR-Keywords: 
To: 77667@debbugs.gnu.org
Received: via spool by 77667-submit@debbugs.gnu.org id=B77667.174650298421874
 (code B ref 77667); Tue, 06 May 2025 03:44:04 +0000
Received: (at 77667) by debbugs.gnu.org; 6 May 2025 03:43:04 +0000
Received: from localhost ([127.0.0.1]:45301 helo=debbugs.gnu.org)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <debbugs-submit-bounces@debbugs.gnu.org>)
 id 1uC9Cx-0005gh-2l
 for submit@debbugs.gnu.org; Mon, 05 May 2025 23:43:04 -0400
Received: from mail-pj1-x1032.google.com ([2607:f8b0:4864:20::1032]:61947)
 by debbugs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128)
 (Exim 4.84_2) (envelope-from <sptankard@gmail.com>)
 id 1uC5TY-0001OL-0c
 for 77667@debbugs.gnu.org; Mon, 05 May 2025 19:43:57 -0400
Received: by mail-pj1-x1032.google.com with SMTP id
 98e67ed59e1d1-3031354f134so3980650a91.3
 for <77667@debbugs.gnu.org>; Mon, 05 May 2025 16:43:55 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=gmail.com; s=20230601; t=1746488629; x=1747093429; darn=debbugs.gnu.org;
 h=to:subject:message-id:date:from:mime-version:from:to:cc:subject
 :date:message-id:reply-to;
 bh=uT3tSDfhwI1Uhy3NF+qSRM63XIuPihtT9+hFULSO3O0=;
 b=R/1JlaimD7qCtcFCnLy+NLNWXrlvdKX+htkL0tLzMP/lkA98wsjA2uOPlNWg0x2AuI
 d6GDpIea7pDpdwe1qe/oLpTlYm+msOPYPKjh6Mf217Qp1tD25nxagAAJiunA8r0OcjOE
 LEacuQf97VduQAU9qP0kvEJaSOOXxUpxWF+U+jxXBU6CHT1ylJAL+jA0bWzK36GjgyXy
 bw6AMiqgpPszmHCrltELm/OmD2JH1E0dgHGPAx5FKt2ag8RoJsxHjwv750dcCj7bRH6S
 oUlC5daitlsCeONDy0qvfGzIBx3Xtn/79Ss5e7jkFEugqh3m/ufP0fTcmULlrFJI8mR6
 kfiQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20230601; t=1746488629; x=1747093429;
 h=to:subject:message-id:date:from:mime-version:x-gm-message-state
 :from:to:cc:subject:date:message-id:reply-to;
 bh=uT3tSDfhwI1Uhy3NF+qSRM63XIuPihtT9+hFULSO3O0=;
 b=mGZ4L3k9Ac4Npv8KT+Z2kOevaRK5nNohvl/LMUzkiqlTh5MLnCgSidI0HvgO8j4kvu
 Os4yTmyLUHyYxZUNpR0IVzH/n4/4J5B3dhUSz2xUpyEnsYjMS0QmTJxgcxnl1Db5XEL2
 Dr/oyBknzaQUX/eV+RULJY1japyW2W5uJU7aiiqW8Mqhsl/uM1k2Eqe0xR4A9JQDdy+J
 8QcAyEqzpuGkMKX06h7MxopZLaqbufGh5hDNrBLjHmhOTpV9QOrqnBlmiz0h3UrJy9Gh
 RvThw8JViLO7sxB4Tln2l+rbK8gSnhLStptO0FuvIPDeZZnCqQ1AJIxZr+9heW/VbpPb
 DDrg==
X-Gm-Message-State: AOJu0YxD6F/F58bGvCejm4xCMRHww3jXkWxLUbSHG3kuXiSlNvQFZ3lH
 iEygqVaGGSqeEuWXK3eGv63Hk3fc6Y2MTKQpGrCAJr0v0jhDEhgYTXzpvgZ8gGt1iJ2rCkd1eYx
 ik8ZcQwoZxRQmkKMVGFeHLxNFyRyPUw==
X-Gm-Gg: ASbGncuUCYCJpmy1yc4W+8EWQjRAHpPMSdAkBa9ibJS9nX4JoIlU5GOAwnX5dhJMxgJ
 EDiAA2wwG0haUu/6LGrCxKKmdMBwfL/c6KCZlN4tH7GqxW7WhSmK7NsagpImS8+OESZdoTmqrPy
 FTTl/VTsuEJJ4vBUWJvZJDXg==
X-Google-Smtp-Source: 
 AGHT+IHAV6ZFtrUNG+GYwSuXPlr3CRLvJkxeKRohn/nka8Xb8sGihDBItpovBzJn8OO40DvUUmPqVohV/XscZ2iOGNE=
X-Received: by 2002:a17:90b:2c8e:b0:305:5f32:d9f5 with SMTP id
 98e67ed59e1d1-30a6196c3ebmr15502089a91.7.1746488629017; Mon, 05 May 2025
 16:43:49 -0700 (PDT)
MIME-Version: 1.0
From: Scott Tankard <sptankard@gmail.com>
Date: Mon, 5 May 2025 16:43:37 -0700
X-Gm-Features: ATxdqUH6U7wp3wKKaIefQyB_GSaAc5SPyFhcxpkZIX-2YHLdCyA3I-5YITV2RDQ
Message-ID: 
 <CANpEqw_VvFDA2oibGxi9hD3fVxXGu9jToHZMNS0T3gg=rHdw0w@mail.gmail.com>
Content-Type: multipart/mixed; boundary="000000000000565c0e06346c122b"
X-Mailman-Approved-At: Mon, 05 May 2025 23:42:59 -0400
X-BeenThere: debbugs-submit@debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
X-BeenThere: guix-patches@gnu.org
List-Id: <guix-patches.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/guix-patches>,
 <mailto:guix-patches-request@gnu.org?subject=unsubscribe>
List-Archive: <https://lists.gnu.org/archive/html/guix-patches>
List-Post: <mailto:guix-patches@gnu.org>
List-Help: <mailto:guix-patches-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/guix-patches>,
 <mailto:guix-patches-request@gnu.org?subject=subscribe>
Errors-To: guix-patches-bounces+patchwork=mira.cbaines.net@gnu.org
Sender: guix-patches-bounces+patchwork=mira.cbaines.net@gnu.org
X-getmail-retrieved-from-mailbox: Patches