| 1 |
On Sat, 4 Jul 2015 00:19:41 +0300 |
| 2 |
Andrew Savchenko <bircoph@g.o> wrote: |
| 3 |
|
| 4 |
> Hi, |
| 5 |
> |
| 6 |
> On Fri, 3 Jul 2015 11:19:13 -0500 William Hubbs wrote: |
| 7 |
> > On Fri, Jul 03, 2015 at 06:34:41AM +0000, Robin H. Johnson wrote: |
| 8 |
> > > On Thu, Jul 02, 2015 at 09:46:18PM -0400, Brian Evans wrote: |
| 9 |
> > > > Does this mean that |
| 10 |
> > > > https://wiki.gentoo.org/wiki/Gentoo_git_workflow is no longer |
| 11 |
> > > > draft or needs work or another document is meant to display the |
| 12 |
> > > > new flow? |
| 13 |
> > > It does cover most of the things needed. |
| 14 |
> > > |
| 15 |
> > > It could use some revision regarding gkeys, and I'd like to also |
| 16 |
> > > mandate signed pushes in addition to signed commits. |
| 17 |
> > |
| 18 |
> > A push doesn't create any data, it just uploads it to the repo, so |
| 19 |
> > how do you sign a push? |
| 20 |
> |
| 21 |
> As I see from git docs only commits and tags may be signed. There |
| 22 |
> is no way to sign a push. Moreover there is no need to sign each |
| 23 |
> commit, see what Linux says on that: |
| 24 |
> http://git.661346.n2.nabble.com/GPG-signing-for-git-commit-td2582986.html |
| 25 |
> |
| 26 |
... |
| 27 |
> |
| 28 |
> Best regards, |
| 29 |
> Andrew Savchenko |
| 30 |
|
| 31 |
Newer version(s) of git do have git push --sign capability. Sorry, I |
| 32 |
don't know the versions that it applies to. It was recently added as a |
| 33 |
feature. It also makes the push sig and data readily available for hook |
| 34 |
use. |
| 35 |
|
| 36 |
-- |
| 37 |
Brian Dolbec <dolsen> |
Archives