lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Date:	Wed, 9 Mar 2016 07:13:09 -0700
From:	Jonathan Corbet <corbet@....net>
To:	Laszlo Ersek <lersek@...hat.com>
Cc:	David Woodhouse <dwmw2@...radead.org>,
	linux-kernel@...r.kernel.org, Randy Dunlap <rdunlap@...radead.org>
Subject: Re: [PATCH 2/7] Docs: Bring SubmittingPatches more into the git era

On Wed, 9 Mar 2016 12:44:26 +0100
Laszlo Ersek <lersek@...hat.com> wrote:

> Namely, do signed tags serve the purpose that a higher level maintainer
> can pull from a trusted, lower level maintainer without looking?
> 
> At these higher levels of the patch flow, does "trusted identity"
> replace "review"?

No, I really don't think so.  Signed tags just verify the origin of the
pull request.

Think of it as a form of defense in depth.  Anybody who merges code into
the kernel merges bugs on a regular basis, even if they carefully review
every line.  Review is a defense against threats like the deliberate
insertion of malevolent code, but it is not an absolute defense.  Signed
tags, one might hope, will at least keep code from deliberately forged
pull requests out of the stream of code needing review.

Or so I see it.

jon

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ