bzr does not check gpg signature policy
Bug #297610 reported by
Maksym Tiurin
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Bazaar |
Confirmed
|
Medium
|
Unassigned | ||
Breezy |
Triaged
|
Low
|
Unassigned |
Bug Description
bzr doesn't process an option 'check_signatures' in '.bzr/branch/
If there is an inscription 'check_signatures = require' on a server, the client still can make unsigned commit.
To check:
$ bzr init-repo --no-trees /tmp/test
$ bzr init-repo test && cd test
$ bzr init /tmp/test/test1
$ echo "check_signatures = require" > /tmp/test/
$ bzr checkout /tmp/test/test1 && cd test1
$ touch aaa
$ bzr add
added aaa
$ cat ~/.bazaar/
[DEFAULT]
email = Maksym Tiurin <email address hidden>
editor = /usr/bin/emacs
$ bzr commit -m 'test'
Committing to: /tmp/test/test1/
added aaa
Committed revision 1.
This make unsigned commit
tags: | added: signatures |
Changed in bzr: | |
importance: | Undecided → Medium |
tags: | added: check-for-breezy |
tags: | removed: check-for-breezy |
Changed in brz: | |
status: | New → Triaged |
importance: | Undecided → Low |
To post a comment you must log in.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Maksym Tiurin wrote: branch. conf' on a server.
> Public bug reported:
>
> bzr doesn't process an option 'check_signatures' in
> '.bzr/branch/
>
> If there is an inscription 'check_signatures = require' on a server, the
> client still can make unsigned commit.
create_ signatures= always will cause bzr to sign commits.
Aaron enigmail. mozdev. org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://
iEYEARECAAYFAkk cdzAACgkQ0F+ nu1YWqI2CzACfRO qV1CmLx/ 2+m7QuMXJLpTAb UvTi+YFplf/ fmDAg6N0NT
LIoAoIHh4F/
=k045
-----END PGP SIGNATURE-----