From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org X-Spam-Level: X-Spam-Status: No, score=-2.4 required=3.0 tests=DKIM_SIGNED,DKIM_VALID, DKIM_VALID_AU,HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI,SPF_HELO_NONE, SPF_PASS,USER_AGENT_SANE_1 autolearn=no autolearn_force=no version=3.4.0 Received: from mail.kernel.org (mail.kernel.org [198.145.29.99]) by smtp.lore.kernel.org (Postfix) with ESMTP id CB819CA9EA9 for ; Sun, 20 Oct 2019 05:50:49 +0000 (UTC) Received: from vger.kernel.org (vger.kernel.org [209.132.180.67]) by mail.kernel.org (Postfix) with ESMTP id 99AED222C3 for ; Sun, 20 Oct 2019 05:50:49 +0000 (UTC) Authentication-Results: mail.kernel.org; dkim=pass (1024-bit key) header.d=ideasonboard.com header.i=@ideasonboard.com header.b="HEEwYN4v" Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1725916AbfJTFul (ORCPT ); Sun, 20 Oct 2019 01:50:41 -0400 Received: from perceval.ideasonboard.com ([213.167.242.64]:48812 "EHLO perceval.ideasonboard.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1725851AbfJTFuk (ORCPT ); Sun, 20 Oct 2019 01:50:40 -0400 Received: from pendragon.ideasonboard.com (unknown [212.213.198.112]) by perceval.ideasonboard.com (Postfix) with ESMTPSA id 66BF8A2C; Sun, 20 Oct 2019 07:50:38 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ideasonboard.com; s=mail; t=1571550638; bh=7Bk/ZTwMGwtci2VkP4q2rQaUIHD/GalarqM+dWqGGtQ=; h=Date:From:To:Cc:Subject:References:In-Reply-To:From; b=HEEwYN4vYb+/LNKl1wLKM1fll4fUCa0JXc9ZbctJy/f2WuaZDzMeXI0/q2imsRSp9 Obr1xUdEt2gJJ4/Lpvd6F6q5Xl7Oh0BTC3JsN20jzt+DUAvZMjY+R6H1Qm7q8t8MMN ga20I6Yro/J19fatbh7SNfjoj1eICyFvmIW7hZAc= Date: Sun, 20 Oct 2019 08:50:33 +0300 From: Laurent Pinchart To: Greg KH Cc: Santiago Torres Arias , Willy Tarreau , Vegard Nossum , workflows@vger.kernel.org, Git Mailing List , LKML , Eric Wong Subject: Re: email as a bona fide git transport Message-ID: <20191020055033.GD4991@pendragon.ideasonboard.com> References: <20191016111009.GE13154@1wt.eu> <20191016144517.giwip4yuaxtcd64g@LykOS.localdomain> <20191017204343.GA1132188@kroah.com> <20191017204532.GA6446@chatter.i7.local> <20191018013029.GA1167832@kroah.com> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline In-Reply-To: <20191018013029.GA1167832@kroah.com> User-Agent: Mutt/1.10.1 (2018-07-13) Sender: workflows-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: workflows@vger.kernel.org On Thu, Oct 17, 2019 at 06:30:29PM -0700, Greg KH wrote: > On Thu, Oct 17, 2019 at 04:45:32PM -0400, Konstantin Ryabitsev wrote: > > On Thu, Oct 17, 2019 at 01:43:43PM -0700, Greg KH wrote: > >>> I wonder if it'd be also possible to then embed gpg signatures over > >>> send-mail payloads so as they can be transparently transferred to the > >>> commit. > >> > >> That's a crazy idea. It would be nice if we could do that, I like it :) > > > > It could only possibly work if nobody ever adds their own "Signed-Off-By" or > > any other bylines. I expect this is a deal-breaker for most maintainers. > > Yeah it is :( > > But, if we could just have the signature on the code change, not the > changelog text, that would help with that issue. I ran into a related issue recently when thinking about how to implement server-side workflows (for a non-kernel project). My goal is to ensure a patch can only be pushed to the master branch if it has received review. The easy way to do so it to check the Reviewed-by tags, but those can easily be forged. I was thus wondering if we should have a way to sign tags (as in commit message tags, not git tags). -- Regards, Laurent Pinchart