summaryrefslogtreecommitdiff
path: root/gpg-interface.c
diff options
context:
space:
mode:
authorbrian m. carlson <sandals@crustytoothpaste.net>2021-01-18 23:49:11 (GMT)
committerJunio C Hamano <gitster@pobox.com>2021-01-19 01:38:20 (GMT)
commit1fb5cf0da657ef046c4eb4d0de6f2defb2fb09c6 (patch)
tree345b28b8ed678c73cc97d7438707b05d6f327ea5 /gpg-interface.c
parent83dff3eb2ed9cd750ec89f3dc5bab44b16119743 (diff)
downloadgit-1fb5cf0da657ef046c4eb4d0de6f2defb2fb09c6.zip
git-1fb5cf0da657ef046c4eb4d0de6f2defb2fb09c6.tar.gz
git-1fb5cf0da657ef046c4eb4d0de6f2defb2fb09c6.tar.bz2
commit: ignore additional signatures when parsing signed commits
When we create a commit with multiple signatures, neither of these signatures includes the other. Consequently, when we produce the payload which has been signed so we can verify the commit, we must strip off any other signatures, or the payload will differ from what was signed. Do so, and in preparation for verifying with multiple algorithms, pass the algorithm we want to verify into parse_signed_commit. Signed-off-by: brian m. carlson <sandals@crustytoothpaste.net> Signed-off-by: Junio C Hamano <gitster@pobox.com>
Diffstat (limited to 'gpg-interface.c')
0 files changed, 0 insertions, 0 deletions
generated by cgit v0.10.2-6-g49f6 at 2024-04-20 05:42:48 (GMT)