[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Reproducible Builds Summit 2022
|
From: |
Christopher Baines |
|
Subject: |
Re: Reproducible Builds Summit 2022 |
|
Date: |
Sat, 05 Nov 2022 14:25:38 +0100 |
|
User-agent: |
mu4e 1.8.9; emacs 28.1 |
zimoun <zimon.toutoune@gmail.com> writes:
> Really cool! Thank you for the heads-up.
>
> On Thu, 03 Nov 2022 at 15:44, Efraim Flashner <efraim@flashner.co.il> wrote:
>
>> We should also continue working on implementing a
>> change in the ACL to allow requiring a K of N agreement between
>> different substitute servers that a build is correct^2.
>
> I am not a specialist about consensus algorithm so maybe I am totally
> out of topic. This K-of-N agreement looks like a Proof of Stake [1].
I think it's useful to keep this simple.
Going back to [1], currently we only support users trusting substitutes
if they're signed by any key they trust.
I'd like to see support for more complex policies, like only trusting
substitutes if there's a valid signature from two substitute servers
(two different keys). So trusting substitutes that have been built by
two substitute servers, and they've come to the same result.
1: https://lists.gnu.org/archive/html/guix-devel/2020-06/msg00179.html
signature.asc
Description: PGP signature