In contrast to tag signatures, commit signatures are put into the header, that is between the other header parts and commit messages. Provide access to the commit content sans the signature, which is the payload that is actually signed. Commit signature verification does the parsing anyways, and callers may wish to act on or display the commit object sans the signature. Signed-off-by: Michael J Gruber <git@xxxxxxxxxxxxxxxxxxxx> --- builtin/merge.c | 1 + commit.c | 1 + gpg-interface.h | 1 + pretty.c | 1 + 4 files changed, 4 insertions(+) diff --git a/builtin/merge.c b/builtin/merge.c index 428ca24..6a9812a 100644 --- a/builtin/merge.c +++ b/builtin/merge.c @@ -1282,6 +1282,7 @@ int cmd_merge(int argc, const char **argv, const char *prefix) printf(_("Commit %s has a good GPG signature by %s\n"), hex, signature_check.signer); + free(signature_check.payload); free(signature_check.gpg_output); free(signature_check.gpg_status); free(signature_check.signer); diff --git a/commit.c b/commit.c index f479331..e9686b2 100644 --- a/commit.c +++ b/commit.c @@ -1219,6 +1219,7 @@ void check_commit_signature(const struct commit* commit, struct signature_check &gpg_output, &gpg_status); if (status && !gpg_output.len) goto out; + sigc->payload = strbuf_detach(&payload, NULL); sigc->gpg_output = strbuf_detach(&gpg_output, NULL); sigc->gpg_status = strbuf_detach(&gpg_status, NULL); parse_gpg_output(sigc); diff --git a/gpg-interface.h b/gpg-interface.h index a85cb5b..d727c25 100644 --- a/gpg-interface.h +++ b/gpg-interface.h @@ -2,6 +2,7 @@ #define GPG_INTERFACE_H struct signature_check { + char *payload; char *gpg_output; char *gpg_status; char result; /* 0 (not checked), diff --git a/pretty.c b/pretty.c index f1e8a70..24fb877 100644 --- a/pretty.c +++ b/pretty.c @@ -1537,6 +1537,7 @@ void format_commit_message(const struct commit *commit, free(context.commit_encoding); logmsg_free(context.message, commit); + free(context.signature_check.payload); free(context.signature_check.gpg_output); free(context.signature_check.gpg_status); free(context.signature_check.signer); -- 2.0.0.533.gae2e602 -- To unsubscribe from this list: send the line "unsubscribe git" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html