From: Junio C Hamano <gitster@pobox.com>
To: "Carlos Martín Nieto" <cmn@dwim.me>
Cc: git@vger.kernel.org
Subject: Re: [RFC PATCH] gpg: add support for gpgsm
Date: Thu, 31 Mar 2016 08:46:05 -0700 [thread overview]
Message-ID: <xmqqa8ler6pu.fsf@gitster.mtv.corp.google.com> (raw)
In-Reply-To: <1459432304-35779-1-git-send-email-cmn@dwim.me> ("Carlos Martín Nieto"'s message of "Thu, 31 Mar 2016 15:51:44 +0200")
Carlos Martín Nieto <cmn@dwim.me> writes:
> Detect the gpgsm block header and run this command instead of gpg.
> On the signing side, ask gpgsm if it knows the signing key we're trying
> to use and fall back to gpg if it does not.
>
> This lets the user more easily combine signing and verifying X509 and
> PGP signatures without having to choose a default for a particular
> repository that may need to be occasionally overridden.
>
> Signed-off-by: Carlos Martín Nieto <cmn@dwim.me>
>
> ---
>
> Out there in the so-called "real world", companies like using X509 to
> sign things. Currently you can set 'gpg.program' to gpgsm to get
> gpg-compatible verification,...
I notice that you had to add GPGSM_MESSAGE string constant; does the
current code without any change really work correctly if you set
'gpg.program' to gpgsm and do nothing else?
> ... but if you're changing it to swap between
> PGP and X509, it's an extra variable to keep in mind when working with
> signed commits and tags.
> +gpgsm.program::
> + Use this custom program instead of "gpgsm" found on $PATH when
> + making or verifying a gpsm signature. The program must support the
gpsm signature, or gpgsm signature?
next prev parent reply other threads:[~2016-03-31 15:46 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2016-03-31 13:51 [RFC PATCH] gpg: add support for gpgsm Carlos Martín Nieto
2016-03-31 14:22 ` Jeff King
2016-03-31 14:44 ` Carlos Martín Nieto
2016-03-31 15:49 ` Junio C Hamano
2016-03-31 15:46 ` Junio C Hamano [this message]
2016-03-31 15:57 ` Jeff King
2016-03-31 16:08 ` Carlos Martín Nieto
2016-03-31 17:30 ` Jeff King
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=xmqqa8ler6pu.fsf@gitster.mtv.corp.google.com \
--to=gitster@pobox.com \
--cc=cmn@dwim.me \
--cc=git@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.