[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <20160309071309.36141068@lwn.net>
Date: Wed, 9 Mar 2016 07:13:09 -0700
From: Jonathan Corbet <corbet@....net>
To: Laszlo Ersek <lersek@...hat.com>
Cc: David Woodhouse <dwmw2@...radead.org>,
linux-kernel@...r.kernel.org, Randy Dunlap <rdunlap@...radead.org>
Subject: Re: [PATCH 2/7] Docs: Bring SubmittingPatches more into the git era
On Wed, 9 Mar 2016 12:44:26 +0100
Laszlo Ersek <lersek@...hat.com> wrote:
> Namely, do signed tags serve the purpose that a higher level maintainer
> can pull from a trusted, lower level maintainer without looking?
>
> At these higher levels of the patch flow, does "trusted identity"
> replace "review"?
No, I really don't think so. Signed tags just verify the origin of the
pull request.
Think of it as a form of defense in depth. Anybody who merges code into
the kernel merges bugs on a regular basis, even if they carefully review
every line. Review is a defense against threats like the deliberate
insertion of malevolent code, but it is not an absolute defense. Signed
tags, one might hope, will at least keep code from deliberately forged
pull requests out of the stream of code needing review.
Or so I see it.
jon
Powered by blists - more mailing lists