From eb307ae7bb78ccde4e2ac69f302ccf8834883628 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Sebastian=20G=C3=B6tte?= <jaseg@physik.tu-berlin.de>
Date: Sun, 31 Mar 2013 18:02:46 +0200
Subject: merge/pull Check for untrusted good GPG signatures
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

When --verify-signatures is specified, abort the merge in case a good
GPG signature from an untrusted key is encountered.

Signed-off-by: Sebastian Götte <jaseg@physik-pool.tu-berlin.de>
Signed-off-by: Junio C Hamano <gitster@pobox.com>
---
 builtin/merge.c | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'builtin/merge.c')

diff --git a/builtin/merge.c b/builtin/merge.c
index e57c42c622..bac11d1605 100644
--- a/builtin/merge.c
+++ b/builtin/merge.c
@@ -1248,6 +1248,9 @@ int cmd_merge(int argc, const char **argv, const char *prefix)
 			switch (signature_check.result) {
 			case 'G':
 				break;
+			case 'U':
+				die(_("Commit %s has an untrusted GPG signature, "
+				      "allegedly by %s."), hex, signature_check.signer);
 			case 'B':
 				die(_("Commit %s has a bad GPG signature "
 				      "allegedly by %s."), hex, signature_check.signer);
-- 
cgit v1.2.1