lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <87sebfgqdf.fsf@trenco.lwn.net>
Date: Thu, 05 Feb 2026 08:30:04 -0700
From: Jonathan Corbet <corbet@....net>
To: Amitabh <amitabh@...devlab.com>
Cc: workflows@...r.kernel.org, linux-doc@...r.kernel.org,
 linux-kernel@...r.kernel.org
Subject: Re: [PATCH v3] docs: process: maintainer-pgp-guide: update
 kernel.org docs link

Amitabh <amitabh@...devlab.com> writes:

> Hi Jon,
>
>> On 5 Feb 2026, at 8:19 PM, Jonathan Corbet <corbet@....net> wrote:
>> 
>> Amitabh Srivastava <amitabh@...devlab.com> writes:
>> 
>>> Update http link to the documentation about how to add a kernel.org UID to
>>> the maintainer's key. Add missing SPDX-License-Identifier to fix a
>>> checkpatch warning.
>>> 
>>> Signed-off-by: Amitabh Srivastava <amitabh@...devlab.com>
>>> ---
>>> Documentation/process/maintainer-pgp-guide.rst | 4 +++-
>>> 1 file changed, 3 insertions(+), 1 deletion(-)
>>> 
>>> diff --git a/Documentation/process/maintainer-pgp-guide.rst b/Documentation/process/maintainer-pgp-guide.rst
>>> index b6919bf606c3..1e4d885dc784 100644
>>> --- a/Documentation/process/maintainer-pgp-guide.rst
>>> +++ b/Documentation/process/maintainer-pgp-guide.rst
>>> @@ -1,3 +1,5 @@
>>> +.. SPDX-License-Identifier: GPL-2.0
>>> +
>> 
>> Do you know that was the intended license for this file?  We need to be
>> careful about putting license declarations on other people's work.
>> 
> Yes, The Linux kernel documentation is typically licensed under GPL-2.0.

I am aware of kernel documentation practices :)  "Typically licensed"
does not tell you what any individual contributor intended, though.
*Probably* that tag is OK, but you should really consult with the
original author of that page to ask what their intent was.

> Other files in the directory contain the same 'SPDX-License-Identifier' as well.
> However, I have added this just to satisfy checkpatch.pl requirement, which
> checks for missing license information in documentation files. Let me know if
> you think otherwise.

Checkpatch makes suggestions, not requirements.  All files in the kernel
should have SPDX lines, but they need to be the correct ones, not just
somebody's guess.

Thanks,

jon

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ