Re: Re: Merge with git-pasky II.

(off-list ancestor, not in this archive)
Re: Merge with git-pasky II. · Junio C Hamano <hidden> · 2016-06-15
Re: Re: Merge with git-pasky II. · Petr Baudis <hidden> · 2016-06-15
Re: Merge with git-pasky II. · Linus Torvalds <torvalds@osdl.org> · 2016-06-15
RE: Merge with git-pasky II. · Barry Silverman <hidden> · 2016-06-15
Re: Merge with git-pasky II. · David Woodhouse <dwmw2@infradead.org> · 2016-06-15
Re: Merge with git-pasky II. · Linus Torvalds <torvalds@osdl.org> · 2016-06-15
Re: Merge with git-pasky II. · David Woodhouse <dwmw2@infradead.org> · 2016-06-15
Re: Merge with git-pasky II. · C. Scott Ananian <hidden> · 2016-06-15
Re: Merge with git-pasky II. · Linus Torvalds <torvalds@osdl.org> · 2016-06-15
Re: Merge with git-pasky II. · Johannes Schindelin <hidden> · 2016-06-15
Re: Merge with git-pasky II. · David Woodhouse <dwmw2@infradead.org> · 2016-06-15
Re: Merge with git-pasky II. · Paul Jackson <hidden> · 2016-06-15
Re: Merge with git-pasky II. · Simon Fowler <hidden> · 2016-06-15
Re: Merge with git-pasky II. · David Lang <hidden> · 2016-06-15
Re: Merge with git-pasky II. · Simon Fowler <hidden> · 2016-06-15
Re: Re: Merge with git-pasky II. · Petr Baudis <hidden> · 2016-06-15
Re: Re: Merge with git-pasky II. · Linus Torvalds <torvalds@osdl.org> · 2016-06-15
Re: Re: Merge with git-pasky II. · David Lang <hidden> · 2016-06-15
Re: Re: Merge with git-pasky II. · Ingo Molnar <hidden> · 2016-06-15
Re: Re: Merge with git-pasky II. · Brad Roberts <hidden> · 2016-06-15
Re: Re: Merge with git-pasky II. · Ingo Molnar <hidden> · 2016-06-15
Re: Re: Merge with git-pasky II. · Ingo Molnar <hidden> · 2016-06-15
Re: Re: Merge with git-pasky II. · Linus Torvalds <torvalds@osdl.org> · 2016-06-15
Re: Merge with git-pasky II. · Herbert Xu <herbert@gondor.apana.org.au> · 2016-06-15
Re: Merge with git-pasky II. · Linus Torvalds <torvalds@osdl.org> · 2016-06-15
Re: Merge with git-pasky II. · Herbert Xu <herbert@gondor.apana.org.au> · 2016-06-15
Re: Merge with git-pasky II. · Petr Baudis <hidden> · 2016-06-15
Re: Merge with git-pasky II. · Kenneth Johansson <hidden> · 2016-06-15
Re: Merge with git-pasky II. · Herbert Xu <herbert@gondor.apana.org.au> · 2016-06-15
Re: Merge with git-pasky II. · Petr Baudis <hidden> · 2016-06-15
Re: Merge with git-pasky II. · Linus Torvalds <torvalds@osdl.org> · 2016-06-15
Re: Re: Merge with git-pasky II. · Ingo Molnar <hidden> · 2016-06-15
Re: Re: Merge with git-pasky II. · Simon Fowler <hidden> · 2016-06-15

From: Ingo Molnar <hidden>
Date: 2016-06-15 22:41:53

Possibly related (same subject, not in this thread)

2016-06-15 · Re: Merge with git-pasky II. · Petr Baudis <hidden>
2016-06-15 · Re: Merge with git-pasky II. · Bram Cohen <hidden>
2016-06-15 · Re: Merge with git-pasky II. · Linus Torvalds <torvalds@osdl.org>
2016-06-15 · Re: Merge with git-pasky II. · Tom Lord <hidden>
2016-06-15 · Re: Merge with git-pasky II. · Daniel Barkalow <hidden>

* Ingo Molnar [off-list ref] wrote:

The compromise relies on you having reviewed something harmless, while 
in reality what happened within the DB was far less harmless. And the 
DB remains self-consistent: neither fsck, nor others importing your 
tree will be able to detect the compromise. This attack can only be 
detected when you apply the patch, after that point all the 
information (except Malice's message in your inbox) is gone.

in fact, this attack cannot even be proven to be malicious, purely via 
the email from Malice: it could be incredible bad luck that caused that 
good-looking patch to be mistakenly matching a dangerous object.

In fact this could happen even today, _accidentally_. (but i'm willing 
to bet that hell will be freezing over first, and i'll have some really 
good odds ;) There's probably a much higher likelyhood of Linus' tree 
getting corrupted in some old fashioned way and introducing a security 
hole by accident)

	Ingo

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help