> -----Original Message-----
> From: Junio C Hamano
> Sent: Tuesday, October 22, 2013 3:51 PM


> I would think.  You might have a funny chicken-and-egg problem with
> the signed commit, though.  I didn't think that part through.

Respectfully, I do not think there is a chicken and egg situation here. Either 
the user has included a generated id field and value in the portion covered by 
the signature, or the mutation of the portion covered by the signature has been 
modified, hence has an invalid signature.

Any user signing their commit, should ensure it is the last operation, or be 
prepared to resign it later.

Jason Pyeron 

Attachment: smime.p7s
Description: S/MIME cryptographic signature

Reply via email to