From mboxrd@z Thu Jan 1 00:00:00 1970 From: "H. Peter Anvin" Subject: Re: [git patches] libata updates, GPG signed (but see admin notes) Date: Mon, 31 Oct 2011 17:42:57 -0700 Message-ID: <4EAF4091.2010205@zytor.com> References: <20111026202235.GA20928@havoc.gtf.org> <1319969101.5215.20.camel@dabdike> <1320049150.8283.19.camel@dabdike> <7vy5w1ow90.fsf@alter.siamese.dyndns.org> <4EAF1F40.3030907@zytor.com> <4EAF2245.90308@zytor.com> <7vzkggok6u.fsf@alter.siamese.dyndns.org> <4EAF3556.3000001@garzik.org> Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Return-path: Received: from terminus.zytor.com ([198.137.202.10]:41414 "EHLO mail.zytor.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1755716Ab1KAAnR (ORCPT ); Mon, 31 Oct 2011 20:43:17 -0400 In-Reply-To: <4EAF3556.3000001@garzik.org> Sender: linux-ide-owner@vger.kernel.org List-Id: linux-ide@vger.kernel.org To: Jeff Garzik Cc: Junio C Hamano , Linus Torvalds , git@vger.kernel.org, James Bottomley , Andrew Morton , linux-ide@vger.kernel.org, LKML > > The main worry is Linus ($human_who_pulls) gets > cryptographically-verified data at the time he pulls. Once Linus > republishes his tree (git push), there will be few, if any, wanting to > verify Jeff Garzik's signature. > > So no, I don't see that as a _driving_ need in the kernel's case. > > And IMO the kernel will be a mix of signed and unsigned content for a > while, possibly forever. > I think the desire is to be able to deconstruct things if things were to go wrong. -hpa -- H. Peter Anvin, Intel Open Source Technology Center I work for Intel. I don't speak on their behalf.