Message ID | cover.1557162679.git.kirr@nexedi.com (mailing list archive) |
---|---|
Headers | show |
Series | stream_open bits for Linux 5.2 | expand |
On Mon, May 6, 2019 at 10:20 AM Kirill Smelkov <kirr@nexedi.com> wrote: > > Maybe it will help: the patches can be also pulled from here: > > git pull https://lab.nexedi.com/kirr/linux.git y/stream_open-5.2 I'll take this, but I generally *really* want a signed tag for non-kernel.org git tree sources. The gpg key used for signing doesn't necessarily even have to be signed by others yet, but just the fact that there's a pgp key means that then future pulls at least verify that it's the sam,e controlling entity, and we can get the signatures later. For something one-time where I will then look through the details of each commit it's not like I absolutely require it, which is why I'm pulling it, but just in general I wanted to point this out. Linus
On Tue, May 07, 2019 at 11:54:21AM -0700, Linus Torvalds wrote: > On Mon, May 6, 2019 at 10:20 AM Kirill Smelkov <kirr@nexedi.com> wrote: > > > > Maybe it will help: the patches can be also pulled from here: > > > > git pull https://lab.nexedi.com/kirr/linux.git y/stream_open-5.2 > > I'll take this, but I generally *really* want a signed tag for > non-kernel.org git tree sources. The gpg key used for signing doesn't > necessarily even have to be signed by others yet, but just the fact > that there's a pgp key means that then future pulls at least verify > that it's the sam,e controlling entity, and we can get the signatures > later. > > For something one-time where I will then look through the details of > each commit it's not like I absolutely require it, which is why I'm > pulling it, but just in general I wanted to point this out. > > Linus Thanks a lot. I've pushed corresponding gpg-signed tag (stream_open-5.2) to my tree. I did not go the gpg way initially because we do not have a gpg-trust relation established and so I thought that signing was useless. Just for the record, here is the key that was used to make the signature: https://pgp.key-server.io/search/kirr@nexedi.com (fingerprint: 0955B024250EEFFCFE42365B66CA788413F67549) Kirill
On Tue, May 7, 2019 at 12:09 PM Kirill Smelkov <kirr@nexedi.com> wrote: > > I've pushed corresponding gpg-signed tag (stream_open-5.2) to my tree. I > did not go the gpg way initially because we do not have a gpg-trust > relation established and so I thought that signing was useless. Ok, since I hadn't pushed out my pull yet, I just re-did it with your signature, so that the key is visible in the git tree. Linus
On Tue, May 07, 2019 at 12:18:03PM -0700, Linus Torvalds wrote: > On Tue, May 7, 2019 at 12:09 PM Kirill Smelkov <kirr@nexedi.com> wrote: > > > > I've pushed corresponding gpg-signed tag (stream_open-5.2) to my tree. I > > did not go the gpg way initially because we do not have a gpg-trust > > relation established and so I thought that signing was useless. > > Ok, since I hadn't pushed out my pull yet, I just re-did it with your > signature, so that the key is visible in the git tree. Thanks.