Received: by 2002:a25:d7c1:0:0:0:0:0 with SMTP id o184csp1355239ybg; Fri, 18 Oct 2019 16:35:37 -0700 (PDT) X-Google-Smtp-Source: APXvYqxol7ed/nGC72N8YOnLUc/RbZA9CJFU8kECZ2HeDlD9f+G6KVG52a5A2qH0+30vyS0HhTTs X-Received: by 2002:a17:906:6a4a:: with SMTP id n10mr11145525ejs.23.1571441737520; Fri, 18 Oct 2019 16:35:37 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1571441737; cv=none; d=google.com; s=arc-20160816; b=A1noq+annBqjKXUdtihuTzDuy2qjZ6yfpX1FwJ/mU8JcAdwnAEhHJdANUZ7grEMQ1c HVAKGeQZI0nY1EKpI/E5VUy1dJiqBQecFdced6NBfg24Y39t6lLMTLpJUl86/bs519CU nY3YeiluJcquUiZ/IAiDMDuH9txz53AS5ZsJ028LmP6Fsdd3Xw7Iuvy7xElJV2rCkouo 1YVQEBBF5/uKBqoZojLFq16TIG/ByrfTv0d1QSkmGWvEanCF3Sskfy5gBL+s2xX4GfI9 e5layZsaXem8Q/4laH1Y4MgllKCd7FVBFIbIKsL8sN11qXkcy7IEUeR2+s4wuyX61HNy nOvQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-language :content-transfer-encoding:in-reply-to:mime-version:user-agent:date :message-id:from:references:to:subject:dkim-signature; bh=Jpi61/2s16j3fMtRfMj2xF4NuVyqdh4656NY34j9qBw=; b=umctFTFhWc7eNxDHXXqZBbicw7BcX2Hqr5jTnsO8JhbEnMnVfNohPtqDoHoUWuZxsU jlbfSLI/d97Yk698kzINxJNKCTQTz1nll/wjswp7rTyNDpxC8MRa+TgP92+BvQKaFjhV 5u/KS/LYCfsLOIhiA6SHLzz7TJXndP/HboMINWJEpk9kWo+q8CBY5eCsFaT1W5JiWmlm WEERRgLDz8ts0Xlup6zZYKRnfgm1kezQP1mLEFAgcola66oX/zWly5oujMwsXapDOcfO cz3D4IBa7RzSdgIG9GVPdHJhT8Yid5yt69lVf0JR2U2ffb0Tm5Dhb+WkZDxYZucQiiOY y5AQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@gandi.net header.s=20190808 header.b=SPPiFN+n; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id be13si4544294edb.362.2019.10.18.16.35.15; Fri, 18 Oct 2019 16:35:37 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@gandi.net header.s=20190808 header.b=SPPiFN+n; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S2407688AbfJRGnu (ORCPT + 99 others); Fri, 18 Oct 2019 02:43:50 -0400 Received: from mail12.gandi.net ([217.70.182.73]:41477 "EHLO gandi.net" rhost-flags-OK-OK-OK-FAIL) by vger.kernel.org with ESMTP id S2393594AbfJRGnt (ORCPT ); Fri, 18 Oct 2019 02:43:49 -0400 X-Greylist: delayed 570 seconds by postgrey-1.27 at vger.kernel.org; Fri, 18 Oct 2019 02:43:48 EDT Received: from diconico07.dev (unknown [IPv6:2001:4b98:beef:a:e921:9c91:35ed:759a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by gandi.net (Postfix) with ESMTPSA id A11781602FD; Fri, 18 Oct 2019 06:34:17 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gandi.net; s=20190808; t=1571380457; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=Jpi61/2s16j3fMtRfMj2xF4NuVyqdh4656NY34j9qBw=; b=SPPiFN+nP1KBYsIYmk+vIOht95Cx/oNJm0rrk9zrtSCBbrDaeHT9N6rOdh/dcMYOFYIC9e GMqfRhIz+DG2+i/FP0IUHyBNeWxWHeH2GAt7iSIiIsY10NtgT6ZbbW1NT4VWG1V71ix3x5 fFGMVgRdw9v50NGTsTNv6pXL+AddYF2oxvRz5ZX6g3wdFSbZNI/+sudoqkIXG4myGeeVY+ ZxXIvpAAHW4hMdiB+fqIU8DkUMGwbd7km1DW81Ke9JidW9LieCaIPAgy3hxTm+IbPQY8tk HwqjI93URS2jntDPKiBZukWPnJs68Aaxb6tw2Tpsshg4Z/+Tc16flbeB9m0zMQ== Subject: Re: email as a bona fide git transport To: Willy Tarreau , Greg KH , Santiago Torres Arias , Vegard Nossum , workflows@vger.kernel.org, Git Mailing List , LKML , Eric Wong References: <20191016111009.GE13154@1wt.eu> <20191016144517.giwip4yuaxtcd64g@LykOS.localdomain> <20191017204343.GA1132188@kroah.com> <20191017204532.GA6446@chatter.i7.local> <20191018013029.GA1167832@kroah.com> <20191018015447.GB6446@chatter.i7.local> <20191018025215.GA15777@1wt.eu> From: Nicolas Belouin Message-ID: <4ea21178-0cac-e958-7c69-ad5b4a74e6b5@gandi.net> Date: Fri, 18 Oct 2019 08:34:17 +0200 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.1.1 MIME-Version: 1.0 In-Reply-To: <20191018025215.GA15777@1wt.eu> Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit Content-Language: en-US Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 10/18/19 4:52 AM, Willy Tarreau wrote: > On Thu, Oct 17, 2019 at 09:54:47PM -0400, Konstantin Ryabitsev wrote: >> On Thu, Oct 17, 2019 at 06:30:29PM -0700, Greg KH wrote: >>>> It could only possibly work if nobody ever adds their own >>>> "Signed-Off-By" or >>>> any other bylines. I expect this is a deal-breaker for most maintainers. >>> Yeah it is :( >>> >>> But, if we could just have the signature on the code change, not the >>> changelog text, that would help with that issue. >> We totally should, and I even mused on how we would do that here: >> https://public-inbox.org/git/20190910121324.GA6867@pure.paranoia.local/ >> >> However, since git's PGP signatures are made for the content in the actual >> commit record (tree hash, parent, author, commit message, etc), the only way >> we could preserve them between the email and the git tree is if we never >> modify any of that data. The SOB and other trailers would have to only be >> applied to the merge commit, or migrate into commit notes. > There's also the possibility to handle this a bit like we do when adding > comments before the SOB: a PGP signature would apply to the text *before* > it only. We could then have long chains of SOB, PGP, SOB, PGP etc. > > Willy I don't think it can work that easily as the signed content is not just the message. It would need git to support nesting signatures and to allow amending a commit without touching the signature and to allow adding one to cover the new content and to have a way to verify every step. Moreover you won't be able to reparent the commit as a maintainer (wich I think is also a deal-breaker) Nicolas