From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1SaTnS-00088V-M7 for garchives@archives.gentoo.org; Fri, 01 Jun 2012 15:29:50 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 989F7E05FE; Fri, 1 Jun 2012 15:29:37 +0000 (UTC) Received: from mail-bk0-f53.google.com (mail-bk0-f53.google.com [209.85.214.53]) by pigeon.gentoo.org (Postfix) with ESMTP id 03A53E06B4 for ; Fri, 1 Jun 2012 15:28:53 +0000 (UTC) Received: by bkcjk13 with SMTP id jk13so2263644bkc.40 for ; Fri, 01 Jun 2012 08:28:53 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:content-type; bh=3+J3qBbeHKyt7czPe9RmkTl4DDqEF8kMfYDzqjJCvM4=; b=zDN1iufijyA72jMRz8af5jOSH6SN9H7Vb6nVx3OkmIfU3nXkzfvNu4c9hi0tNX3AvM 61HdswObseGTFWGvvloQWU3HcpocWowcK1ZykF7HmGrTI4wDE0uoiqo0xi4xuv21c5t/ Q5AZLsYfKZxuKBavYaeRvjMjzoN55VAykcwrYoTTrzmV58FlJCmX9uUx9pheqaIpx53V mJ10o3UVNATCt9ko9Z1UNhp/Qzn6bvoycnqrba6GIlDILsF1LnFQGEqYA6JpAVf5Wlw1 jGZCEej/RKDL5vs1w9njcWRQCbXhi/IS0upqFH6S3rx1v0irvn8UpAyS5IkpIH/nEXvl cQoQ== Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org MIME-Version: 1.0 Received: by 10.204.149.216 with SMTP id u24mr2196080bkv.36.1338564533099; Fri, 01 Jun 2012 08:28:53 -0700 (PDT) Sender: freemanrich@gmail.com Received: by 10.204.149.211 with HTTP; Fri, 1 Jun 2012 08:28:53 -0700 (PDT) In-Reply-To: <3375796.AWLuLamy3m@grenadine> References: <3375796.AWLuLamy3m@grenadine> Date: Fri, 1 Jun 2012 11:28:53 -0400 X-Google-Sender-Auth: Z6sniXr9IsmTWSZOs67XInKbT4w Message-ID: Subject: Re: Re: [gentoo-dev] Re: Portage Git migration - clean cut or git-cvsserver From: Rich Freeman To: gentoo-dev@lists.gentoo.org Content-Type: text/plain; charset=ISO-8859-1 X-Archives-Salt: 6badb3c7-5aba-47bb-829c-c3f5036f2984 X-Archives-Hash: c299c4a1ab8f1d8c0c672f96ab25aa34 On Fri, Jun 1, 2012 at 11:12 AM, Andreas K. Huettel wrote: > Now, does the "signed data" also contain the parent sha? > So, I was working on a lengthy email which now would be fairly repetitive of what Kent posted. Suffice it to say I managed to rip out a commit from the kde overlay, deflate it, and compared that the signature: -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.18 (GNU/Linux) iQEcBAABCgAGBQJPx+mcAAoJEO+t9ga+3I3aqLoH/0OrRA1+NPRHGfbbLoQrqMwl sB+2It2Pb9LfPjEme+lrQu5WgFY4j7k0qd2ZYdnXM7JdQjsqmpfAMloHh5JN4TAS 4vk8+u2GJCYgzL/SY5XlPl2l8dT91PhQJSN0yVt4Q9TsoN3nzVpFBjACJCy9R6j2 HrXvz/g3+MqY/9VesV8IiVgvQUTVgCdh8zBJ2rVyWAVH0bErsn518aiwEyfzNOxA 1qJxxgGJLMpXp+nI8rnmhqTAAKiNA+byAKAsTEl3LS7OvQZ51aOCwa4A2GLOn2ef 5JmuYQG5/FsS0RfXrqk72PiStTBWa3TakHYrgNXOXlslIR5AIB2tYnXqZcdEqYQ= =fucY -----END PGP SIGNATURE----- does in fact verify for the payload: --start-- tree 7d7f97cded40158d0f580ca6fbe97398d5c867f8 parent 14d7d9cb2219f64c7a715d8da0bbe48a32c9dad8 author Johannes Huber 1338501525 +0200 committer Johannes Huber 1338501525 +0200 [kde-base/kdelibs] Sync with live. (Portage version: 2.2.0_alpha108/git/Linux i686, unsigned Manifest commit) --end-- Dump those into a text file and run gpg for yourself... The full commit contains the gpg signature in a field as already posted by Kent. And while I appreciate the performance boost and space savings provided by all the compression/packing/etc, I've learned to almost hate those features with a passion this morning... Getting a cloned repo unpacked, and the commit decompressed was a bit pita. The other issue is that the header in the commit file is stripped before it is signed, the actual start of the commit is "commit 830tree..." Rich