base on a post in the last year on fedora-devel I have
make the following test the the kernel package repository:
$ git clone ssh://s4504kr@pkgs.stg.fedoraproject.org/kernel
$ cd kernel
... Add a Changelog entry in kernel.spec
$git commit -m ...
$git push
I haven't got any error message. But I have expedted to
get one, because I'm not a kernel developer. I'm only a
ordinary provenpackager without any additional access
to the kernel package.
After then I have deleted the kernel directory and
have done a git clone to verify, that my changes was
transfered to the remote repository.
The result is, that the changes sill exist in the repository.
Best Regards:
Jochen Schmitt
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
JS> I'm only a ordinary provenpackager without any additional access to
JS> the kernel package.
Provenpackagers have write access to the kernel package. What exactly
do you think has gone wrong here?
- J<
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
01-20-2010, 08:29 PM
Ricky Zhou
My git security experiences
On 2010-01-20 10:20:33 PM, Jochen Schmitt wrote:
> base on a post in the last year on fedora-devel I have
> make the following test the the kernel package repository:
>
> $ git clone ssh://s4504kr@pkgs.stg.fedoraproject.org/kernel
> $ cd kernel
>
> ... Add a Changelog entry in kernel.spec
>
> $git commit -m ...
> $git push
>
> I haven't got any error message. But I have expedted to
> get one, because I'm not a kernel developer. I'm only a
> ordinary provenpackager without any additional access
> to the kernel package.
From https://admin.fedoraproject.org/pkgdb/packages/name/kernel, it
looks like kernel actually has provenpackager commits on, so this should
be normal. I thought it was one of the exceptions, but apparently not.
Thanks,
Ricky
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
01-20-2010, 08:31 PM
Jesse Keating
My git security experiences
On Wed, 2010-01-20 at 22:20 +0100, Jochen Schmitt wrote:
>
> I haven't got any error message. But I have expedted to
> get one, because I'm not a kernel developer. I'm only a
> ordinary provenpackager without any additional access
> to the kernel package.
>
>
Kernel is open to provenpackager, so it makes sense that you were able
to commit to it.
--
Jesse Keating
Fedora -- Freedom˛ is a feature!
identi.ca: http://identi.ca/jkeating
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
01-20-2010, 11:27 PM
Dave Jones
My git security experiences
On Wed, Jan 20, 2010 at 01:31:45PM -0800, Jesse Keating wrote:
> On Wed, 2010-01-20 at 22:20 +0100, Jochen Schmitt wrote:
> >
> > I haven't got any error message. But I have expedted to
> > get one, because I'm not a kernel developer. I'm only a
> > ordinary provenpackager without any additional access
> > to the kernel package.
> >
> >
>
> Kernel is open to provenpackager, so it makes sense that you were able
> to commit to it.
>
> https://admin.fedoraproject.org/pkgdb/packages/name/kernel
Right. We review commits to the cvs tree as the diffs hit the mailing list,
so cluebatting would happen fairly quickly if necessary (though until now,
no-one who wasn't already explicitly approved in the kernel acl
has committed anything afaik).
The git tree commit went unnoticed because the commitdiff hook isn't
wired up yet.
Dave
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
01-21-2010, 02:43 AM
David Woodhouse
My git security experiences
On Wed, 2010-01-20 at 16:29 -0500, Ricky Zhou wrote:
> From https://admin.fedoraproject.org/pkgdb/packages/name/kernel, it
> looks like kernel actually has provenpackager commits on, so this should
> be normal. I thought it was one of the exceptions, but apparently not.
Did we grant _any_ exceptions?
--
David Woodhouse Open Source Technology Centre
David.Woodhouse@intel.com Intel Corporation
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
01-21-2010, 06:08 AM
Dennis Gilmore
My git security experiences
On Wednesday 20 January 2010 06:27:18 pm Dave Jones wrote:
> On Wed, Jan 20, 2010 at 01:31:45PM -0800, Jesse Keating wrote:
> > On Wed, 2010-01-20 at 22:20 +0100, Jochen Schmitt wrote:
> > > I haven't got any error message. But I have expedted to
> > > get one, because I'm not a kernel developer. I'm only a
> > > ordinary provenpackager without any additional access
> > > to the kernel package.
> >
> > Kernel is open to provenpackager, so it makes sense that you were able
> > to commit to it.
> >
> > https://admin.fedoraproject.org/pkgdb/packages/name/kernel
>
> Right. We review commits to the cvs tree as the diffs hit the mailing list,
> so cluebatting would happen fairly quickly if necessary (though until now,
> no-one who wasn't already explicitly approved in the kernel acl
> has committed anything afaik).
>
> The git tree commit went unnoticed because the commitdiff hook isn't
> wired up yet.
>
> Dave
I would be the only one not explicitly on the list that has commited. but all
of my commits have been sparc specifc ones.
Dennis
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
01-21-2010, 02:41 PM
Jochen Schmitt
My git security experiences
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Wed, 20 Jan 2010 15:27:23 -0600, you wrote:
>Provenpackagers have write access to the kernel package. What exactly
>do you think has gone wrong here?
OK, I thought that the kernel package was one of the exclussion
of the mass opening process. I have retried the test with the
firefox package. On this package the git push process was
blocked.
On Wed, Jan 20, 2010 at 10:43 PM, David Woodhouse <dwmw2@infradead.org> wrote:
> Did we grant _any_ exceptions?
Yes, firefox, thunderbird, and xulrunner due to trademark issues,
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
My git security experiences
