Archives
Archives
| From: | Torsten Veller <ml-en@××××××.net> | ||
|---|---|---|---|
| To: | gentoo-dev@l.g.o | ||
| Subject: | [gentoo-dev] Re: rejecting unsigned commits | ||
| Date: | Fri, 25 Mar 2011 07:16:41 | ||
| Message-Id: | 20110325074824.TAf2c206.tv@veller.net | ||
| In Reply to: | Re: [gentoo-dev] rejecting unsigned commits by Mike Frysinger |
||
| 1 | * Mike Frysinger <vapier@g.o>: |
| 2 | > On Thu, Mar 24, 2011 at 8:09 PM, Antoni Grzymala wrote: |
| 3 | [Manifest signing] |
| 4 | > > Does that get us any closer to GLEPs 57, 58, 59 (or generally |
| 5 | > > approaching the tree-signing/verifying group of problems)? |
| 6 | > |
| 7 | > yes |
| 8 | |
| 9 | I think, it's a "no". |
| 10 | The MetaManifest GLEP relies on a signed top-level "MetaManifest" which |
| 11 | hashes all sub Manifests, whether they are signed or not doesn't matter. |
| 12 | |
| 13 | I don't see a major advantage to signed portage snapshots we already |
| 14 | offer today. |
| 15 | |
| 16 | |
| 17 | Do you want to reject signed commits if |
| 18 | - keys are not publicly available [1] |
| 19 | - signatures are from expired keys [2] |
| 20 | - keys are revoked [3] |
| 21 | - keys are not listed in userinfo.xml (current or former devs) [4] |
| 22 | |
| 23 | [1] https://bugs.gentoo.org/205405 |
| 24 | [2] http://dev.gentoo.org/~tove/stats/gentoo-x86/Manifest/signatures_by_expired_keys.txt |
| 25 | [3] http://dev.gentoo.org/~tove/stats/gentoo-x86/Manifest/signatures_by_revoked_keys.txt |
| 26 | [4] http://dev.gentoo.org/~tove/stats/gentoo-x86/Manifest/keys_in_use.txt |
| Subject | Author |
|---|---|
| Re: [gentoo-dev] Re: rejecting unsigned commits | Patrick Lauer <patrick@g.o> |
| Re: [gentoo-dev] Re: rejecting unsigned commits | "Andreas K. Huettel" <dilfridge@g.o> |
| Re: [gentoo-dev] Re: rejecting unsigned commits | Antoni Grzymala <awaria@××××××××××.pl> |
| Re: [gentoo-dev] Re: rejecting unsigned commits | "Michał Górny" <mgorny@g.o> |
| Re: [gentoo-dev] Re: rejecting unsigned commits | Mike Frysinger <vapier@g.o> |