1 |
On 03/14/2013 09:01 PM, Robin H. Johnson wrote: |
2 |
> On Thu, Mar 14, 2013 at 05:14:15PM +0100, Michał Górny wrote: |
3 |
>> If that means doing an additional signature every time something is |
4 |
>> going to be committed, that sounds like an overkill. If we were to do |
5 |
>> something radical, I'd rather be in favor of disabling keyword |
6 |
>> expansion completely and finally being able to do sane commits. |
7 |
> I foresee it as more of: |
8 |
> IFF this commit will call GPG later, ensure the agent can access the |
9 |
> secret key BEFORE trying to sign at the end. |
10 |
> |
11 |
> As to how to accomplish this, it's either a throwaway sig, or poking the |
12 |
> agent protocol directly. |
13 |
> |
14 |
|
15 |
The only trouble with that is if the agent is configured to only unlock |
16 |
keys for limited periods of time, then your initial check might catch |
17 |
the agent when the key is still unlocked, but your subsequent call to |
18 |
GPG comes after the timeout. I ran into this while trying to set up |
19 |
automated signing of debian packages I was building. |
20 |
|
21 |
All it really means, in a practical procedural sense, is that you need |
22 |
to allow yourself a way to roll back anything you've been doing if that |
23 |
later check fails. |