FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Redhat > Fedora Development

 
 
LinkBack Thread Tools
 
Old 01-20-2010, 08:20 PM
Jochen Schmitt
 
Default My git security experiences

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hallo,

base on a post in the last year on fedora-devel I have
make the following test the the kernel package repository:

$ git clone ssh://s4504kr@pkgs.stg.fedoraproject.org/kernel
$ cd kernel

... Add a Changelog entry in kernel.spec

$git commit -m ...
$git push

I haven't got any error message. But I have expedted to
get one, because I'm not a kernel developer. I'm only a
ordinary provenpackager without any additional access
to the kernel package.

After then I have deleted the kernel directory and
have done a git clone to verify, that my changes was
transfered to the remote repository.

The result is, that the changes sill exist in the repository.

Best Regards:

Jochen Schmitt
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/

iJwEAQECAAYFAktXc5UACgkQZLAIBz9lVu80YAP9EaVas6dbVp kA0p3CTv2WJxpK
8DHqMPQmRIkpJFJyztS3/KVHcQaATPQetb+lO7158hYIfmHFKa7nFjzNFWnRnyrk
5/T0bxpTh8nZknZvRKm9vFa64EH64pKNaQfFCbnFNkPg+6OPSL5b Dmkfbby2sdsY
i7Hag1X5Xb6li50ANEM=
=TWCL
-----END PGP SIGNATURE-----

--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
 
Old 01-20-2010, 08:27 PM
"Jason L Tibbitts III"
 
Default My git security experiences

>>>>> "JS" == Jochen Schmitt <Jochen@herr-schmitt.de> writes:

JS> I'm only a ordinary provenpackager without any additional access to
JS> the kernel package.

Provenpackagers have write access to the kernel package. What exactly
do you think has gone wrong here?

- J<
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
 
Old 01-20-2010, 08:27 PM
"Jason L Tibbitts III"
 
Default My git security experiences

>>>>> "JS" == Jochen Schmitt <Jochen@herr-schmitt.de> writes:

JS> I'm only a ordinary provenpackager without any additional access to
JS> the kernel package.

Provenpackagers have write access to the kernel package. What exactly
do you think has gone wrong here?

- J<
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
 
Old 01-20-2010, 08:29 PM
Ricky Zhou
 
Default My git security experiences

On 2010-01-20 10:20:33 PM, Jochen Schmitt wrote:
> base on a post in the last year on fedora-devel I have
> make the following test the the kernel package repository:
>
> $ git clone ssh://s4504kr@pkgs.stg.fedoraproject.org/kernel
> $ cd kernel
>
> ... Add a Changelog entry in kernel.spec
>
> $git commit -m ...
> $git push
>
> I haven't got any error message. But I have expedted to
> get one, because I'm not a kernel developer. I'm only a
> ordinary provenpackager without any additional access
> to the kernel package.
From https://admin.fedoraproject.org/pkgdb/packages/name/kernel, it
looks like kernel actually has provenpackager commits on, so this should
be normal. I thought it was one of the exceptions, but apparently not.

Thanks,
Ricky
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
 
Old 01-20-2010, 08:31 PM
Jesse Keating
 
Default My git security experiences

On Wed, 2010-01-20 at 22:20 +0100, Jochen Schmitt wrote:
>
> I haven't got any error message. But I have expedted to
> get one, because I'm not a kernel developer. I'm only a
> ordinary provenpackager without any additional access
> to the kernel package.
>
>

Kernel is open to provenpackager, so it makes sense that you were able
to commit to it.

https://admin.fedoraproject.org/pkgdb/packages/name/kernel

--
Jesse Keating
Fedora -- Freedom˛ is a feature!
identi.ca: http://identi.ca/jkeating
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
 
Old 01-20-2010, 11:27 PM
Dave Jones
 
Default My git security experiences

On Wed, Jan 20, 2010 at 01:31:45PM -0800, Jesse Keating wrote:
> On Wed, 2010-01-20 at 22:20 +0100, Jochen Schmitt wrote:
> >
> > I haven't got any error message. But I have expedted to
> > get one, because I'm not a kernel developer. I'm only a
> > ordinary provenpackager without any additional access
> > to the kernel package.
> >
> >
>
> Kernel is open to provenpackager, so it makes sense that you were able
> to commit to it.
>
> https://admin.fedoraproject.org/pkgdb/packages/name/kernel

Right. We review commits to the cvs tree as the diffs hit the mailing list,
so cluebatting would happen fairly quickly if necessary (though until now,
no-one who wasn't already explicitly approved in the kernel acl
has committed anything afaik).

The git tree commit went unnoticed because the commitdiff hook isn't
wired up yet.

Dave

--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
 
Old 01-21-2010, 02:43 AM
David Woodhouse
 
Default My git security experiences

On Wed, 2010-01-20 at 16:29 -0500, Ricky Zhou wrote:
> From https://admin.fedoraproject.org/pkgdb/packages/name/kernel, it
> looks like kernel actually has provenpackager commits on, so this should
> be normal. I thought it was one of the exceptions, but apparently not.

Did we grant _any_ exceptions?

--
David Woodhouse Open Source Technology Centre
David.Woodhouse@intel.com Intel Corporation

--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
 
Old 01-21-2010, 06:08 AM
Dennis Gilmore
 
Default My git security experiences

On Wednesday 20 January 2010 06:27:18 pm Dave Jones wrote:
> On Wed, Jan 20, 2010 at 01:31:45PM -0800, Jesse Keating wrote:
> > On Wed, 2010-01-20 at 22:20 +0100, Jochen Schmitt wrote:
> > > I haven't got any error message. But I have expedted to
> > > get one, because I'm not a kernel developer. I'm only a
> > > ordinary provenpackager without any additional access
> > > to the kernel package.
> >
> > Kernel is open to provenpackager, so it makes sense that you were able
> > to commit to it.
> >
> > https://admin.fedoraproject.org/pkgdb/packages/name/kernel
>
> Right. We review commits to the cvs tree as the diffs hit the mailing list,
> so cluebatting would happen fairly quickly if necessary (though until now,
> no-one who wasn't already explicitly approved in the kernel acl
> has committed anything afaik).
>
> The git tree commit went unnoticed because the commitdiff hook isn't
> wired up yet.
>
> Dave
I would be the only one not explicitly on the list that has commited. but all
of my commits have been sparc specifc ones.

Dennis
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
 
Old 01-21-2010, 02:41 PM
Jochen Schmitt
 
Default My git security experiences

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Wed, 20 Jan 2010 15:27:23 -0600, you wrote:

>Provenpackagers have write access to the kernel package. What exactly
>do you think has gone wrong here?

OK, I thought that the kernel package was one of the exclussion
of the mass opening process. I have retried the test with the
firefox package. On this package the git push process was
blocked.

Best Regards:

Jochen Schmitt

-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.10.0 (Build 500)
Charset: us-ascii

wj8DBQFLWHXOT2AHK6txfgwRAiCYAJ9ewXC62P2xd0a4E90nR4 6jLbxXNgCcClAl
088zlJ35aqjicgahadZ8mjA=
=6+4i
-----END PGP SIGNATURE-----
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
 
Old 01-21-2010, 07:55 PM
Jon Stanley
 
Default My git security experiences

On Wed, Jan 20, 2010 at 10:43 PM, David Woodhouse <dwmw2@infradead.org> wrote:

> Did we grant _any_ exceptions?

Yes, firefox, thunderbird, and xulrunner due to trademark issues,
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
 

Thread Tools




All times are GMT. The time now is 10:36 PM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright ©2007 - 2008, www.linux-archive.org