Re: [RFC][PATCH v2][QUILT] Add gpg signing to quilt mail

From: H. Peter Anvin
Date: Tue Oct 04 2011 - 14:10:25 EST

Next message: Steven Rostedt: "Re: [RFC][PATCH v2][QUILT] Add gpg signing to quilt mail"
Previous message: Grant Likely: "Re: [PATCH v2 1/7] clk: Add a generic clock infrastructure"
In reply to: Greg KH: "Re: [RFC][PATCH v2][QUILT] Add gpg signing to quilt mail"
Next in thread: Steven Rostedt: "Re: [RFC][PATCH v2][QUILT] Add gpg signing to quilt mail"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 10/04/2011 11:02 AM, Greg KH wrote:
> On Tue, Oct 04, 2011 at 01:46:34PM -0400, Steven Rostedt wrote:
>> +my $pgp = `gpg --simple-sk-checksum -a --detach-sign $pass --output - < $tmpfile`;
>
> Try not to use gpg when calling from scripts, use gpgv instead, it
> handles things much better, and sets the return value correctly so you
> can check it (which I don't think you do here.)
>

gpgv is only usable to verify contents (equivalent to gpg --verify).
For other things you need to use gpg's --status-fd feature, *or*
(perhaps better) run gpgv on the output to verify that you actually got
a good signature.

-hpa
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Steven Rostedt: "Re: [RFC][PATCH v2][QUILT] Add gpg signing to quilt mail"
Previous message: Grant Likely: "Re: [PATCH v2 1/7] clk: Add a generic clock infrastructure"
In reply to: Greg KH: "Re: [RFC][PATCH v2][QUILT] Add gpg signing to quilt mail"
Next in thread: Steven Rostedt: "Re: [RFC][PATCH v2][QUILT] Add gpg signing to quilt mail"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]