From: | Torsten Veller <ml-en@××××××.net> | ||
---|---|---|---|
To: | gentoo-dev@l.g.o | ||
Subject: | [gentoo-dev] Re: rejecting unsigned commits | ||
Date: | Fri, 25 Mar 2011 07:16:41 | ||
Message-Id: | 20110325074824.TAf2c206.tv@veller.net | ||
In Reply to: | Re: [gentoo-dev] rejecting unsigned commits by Mike Frysinger |
1 | * Mike Frysinger <vapier@g.o>: |
2 | > On Thu, Mar 24, 2011 at 8:09 PM, Antoni Grzymala wrote: |
3 | [Manifest signing] |
4 | > > Does that get us any closer to GLEPs 57, 58, 59 (or generally |
5 | > > approaching the tree-signing/verifying group of problems)? |
6 | > |
7 | > yes |
8 | |
9 | I think, it's a "no". |
10 | The MetaManifest GLEP relies on a signed top-level "MetaManifest" which |
11 | hashes all sub Manifests, whether they are signed or not doesn't matter. |
12 | |
13 | I don't see a major advantage to signed portage snapshots we already |
14 | offer today. |
15 | |
16 | |
17 | Do you want to reject signed commits if |
18 | - keys are not publicly available [1] |
19 | - signatures are from expired keys [2] |
20 | - keys are revoked [3] |
21 | - keys are not listed in userinfo.xml (current or former devs) [4] |
22 | |
23 | [1] https://bugs.gentoo.org/205405 |
24 | [2] http://dev.gentoo.org/~tove/stats/gentoo-x86/Manifest/signatures_by_expired_keys.txt |
25 | [3] http://dev.gentoo.org/~tove/stats/gentoo-x86/Manifest/signatures_by_revoked_keys.txt |
26 | [4] http://dev.gentoo.org/~tove/stats/gentoo-x86/Manifest/keys_in_use.txt |
Subject | Author |
---|---|
Re: [gentoo-dev] Re: rejecting unsigned commits | Patrick Lauer <patrick@g.o> |
Re: [gentoo-dev] Re: rejecting unsigned commits | "Andreas K. Huettel" <dilfridge@g.o> |
Re: [gentoo-dev] Re: rejecting unsigned commits | Antoni Grzymala <awaria@××××××××××.pl> |
Re: [gentoo-dev] Re: rejecting unsigned commits | "Michał Górny" <mgorny@g.o> |
Re: [gentoo-dev] Re: rejecting unsigned commits | Mike Frysinger <vapier@g.o> |