Re: Git-commits mailing list feed.
From: David A. Wheeler
Date: Sun Apr 24 2005 - 22:32:02 EST
On Mon, 25 Apr 2005, Fabian Franz wrote:
>> What about just <sha1 hash of object>.sig or <sha1 hash of object>.asc?
If you mean "hash of object being signed", the problem is that
there may be more than one signature of a given object.
Keys get stolen, for example, so you want to re-sign the objects.
Yes, you could replace the files, but it's nicer to make it
so there's never a need to replace files in the first place.
That's one of the nice properties of the git object database;
so if we can have that property everywhere, I think we should.
Instead, store the signatures in the normal object database, &
give it type "signature". To speed access FROM a commit or tag
to a signature (and FROM a commit to a tag), create a
separate reverse directory that tells you what objects reference
a given object. Like this:
0195297c2a6336c2007548f909769e0862b509 <= a commit object
0395297c2a6336c2007548f909769e0862b509 <= signature of commit
0595297c2a6336c2007548f909769e0862b509 <= a tag
0795297c2a6336c2007548f909769e0862b509 <= signature of tag
020395297c2a6336c2007548f909769e0862b509 "this signs commit"
.... other later signatures of this commit go here.
.... other later signatures of this tag go here.
The reverse directory's contents are basically the filenames.
The files themselves could be symlinks back up, or not.
Content-free files are probably more portable across filesystems,
and it's probably also good for space efficiency
(though I haven't examined that carefully).
"git"'s knowledge of signatures should be VERY limited, and
not dependent on PGP. I think that'd be easy.
You could prepend some signature data into the "signature" file to
make it much easier to reconstruct the reverse directory and
to make it easy to check things WITHOUT knowledge of PGP or whatever.
Here's potential output:
$ cat-file commit 000195297c2a6336c2007548f909769e0862b509
author Petr Baudis <pasky@xxxxxx> 1114303479 +0200
committer Petr Baudis <xpasky@xxxxxxxxxxxxxxxx> 1114303479 +0200
Added the whatsit flag.
$ cat-file signature 000195297c2a6336c2007548f909769e0862b509
signatureof commit 000195297c2a6336c2007548f909769e0862b509
signer Petr Baudis <pasky@xxxxxx>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)
-----END PGP SIGNATURE-----
--- David A. Wheeler
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/