Launchpad itself

Authentication of revision committer

Bug #240756 reported by Daniel Schierbeck on 2008-06-17

Affects		Status	Importance	Assigned to	Milestone
	Launchpad itself	Triaged	Low	Unassigned

Bug Description

In branch views <https://code.edge.launchpad.net/~spiv/bzr/make-branch-and-tree-fix> , it seems the committer of a revision is linked to if the email part matches a Launchpad user.

One can easily spoof the committer email address, making ones commits appear to be someone else's.

Perhaps use GPG verification?

See original description

Tags:

Diogo Matsubara (matsubara) on 2008-06-18

description:

updated

Revision history for this message

Diogo Matsubara (matsubara) wrote on 2008-06-18:

Tim, what do you think?

This is similar to bug 190758

Changed in launchpad-bazaar:
assignee:	nobody → thumper

Revision history for this message

Tim Penhey (thumper) wrote on 2008-06-18:

I think Aaron is able to provide a better comment on this.

Changed in launchpad-bazaar:
assignee:	thumper → abentley

Revision history for this message

Aaron Bentley (abentley) wrote on 2008-06-18:

In theory, doing authentication is just a matter of tying our existing bits together. Launchpad can validate a GPG signature. bzr can verify that the signed testament is correct. Once we can perform validation, we'll probably want to store this in a database attribute, e.g. an enum.

However, there are many states:
Validated with the committer's key
Validated with some other key
Unknown key
No signature
Signed with a known key, and not valid
Incorrectly signed

No signature will be a very, very common case. Bazaar itself doesn't support checking signatures, so the incentive to sign is small.

I suggest that in the web UI, we mark validated revisions specially, and mark revisions that failed validation specially. Revisions with no signature would display normally.

I'm not sure what to suggest about about revisions signed with some other key. Maybe add extra text saying who signed it if it isn't the committer. This case may be so rare that we don't need to bother with it.

Diogo Matsubara (matsubara) on 2008-06-19

Changed in launchpad-bazaar:
importance:	Undecided → Wishlist
status:	New → Confirmed

Aaron Bentley (abentley) on 2010-11-25

Changed in launchpad-code:
assignee:	Aaron Bentley (abentley) → nobody

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.