From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1Q3EAh-00058g-Ku for garchives@archives.gentoo.org; Fri, 25 Mar 2011 21:03:51 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id B863DE0444; Fri, 25 Mar 2011 21:03:42 +0000 (UTC) Received: from mail-iy0-f181.google.com (mail-iy0-f181.google.com [209.85.210.181]) by pigeon.gentoo.org (Postfix) with ESMTP id C5B601C071 for ; Fri, 25 Mar 2011 21:03:08 +0000 (UTC) Received: by iyb26 with SMTP id 26so1884979iyb.40 for ; Fri, 25 Mar 2011 14:03:08 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:sender:from:date :x-google-sender-auth:message-id:subject:to:content-type; bh=zNrcBAwQsLFL+/iaVOhNqGzLjdL/6K97v53uRvnr5Wc=; b=HmK0UiNOyVRr/ze/U6Y5aOn6rkrSxfhq3SFqLmJjROo/URTE0GcWO7JLXDSwHiaIKj LYtkvGW9zMtDT4Wucdpm98dqLhGExu+8Cz9qC64NJLdELR75SeFHjEA/9ons4vli2J8W Xm7OVKmEojM9TeZZwm5AbZKaCISKTu2G/W/qU= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:sender:from:date:x-google-sender-auth:message-id :subject:to:content-type; b=idVkvTuWtiatjroq/IWyZtmzSlpbp8YTEcCsYRdboAy6Az0KKmRayttJrWeJIA7jpw AeagissKS7aiTmfaUk5XMczFEHzA5DBoODmEhPBd24UZJk9GaFEsMet97VTrRcyct3Wz Z4Kv1rimDT7Wi53QK2eBsF6AA2540c5FRoT/k= Received: by 10.42.133.72 with SMTP id g8mr2078040ict.80.1301086988184; Fri, 25 Mar 2011 14:03:08 -0700 (PDT) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org MIME-Version: 1.0 Sender: vapierfilter@gmail.com Received: by 10.231.11.195 with HTTP; Fri, 25 Mar 2011 14:02:48 -0700 (PDT) From: Mike Frysinger Date: Fri, 25 Mar 2011 17:02:48 -0400 X-Google-Sender-Auth: kddNCXLsk0ysYA6mDJxMDPA_pWg Message-ID: Subject: [gentoo-dev] signing with proxied maintainers To: gentoo-dev@lists.gentoo.org Content-Type: text/plain; charset=ISO-8859-1 X-Archives-Salt: X-Archives-Hash: d6df01e1769e00eabadab8092310c57e once we move to git, the workflow for proxy maintainers is going to be a lot smoother. the question is how to handle signing with proxy maintainers. it would be nice if said proxied maintainers would sign things and that would be preserved all the way to the push to the common server. pros: - Gentoo dev doing the proxy can pull, look at the commits, and then push cons: - proxied maintainers need to set up pgp too - we need to have another list of keys to accept outside of the existing Gentoo dev list - easy to miss if commit was made through repoman, or on an older tree the other method would be that a Gentoo dev pulls the changesets and then runs `repoman commit` himself. pros: - proxied maintainers need not think of pgp at all - we only need the original Gentoo dev key list - the Gentoo dev knows immediately if there's a repoman problem cons: - workflow not as smooth i thinking about this last bit, i wonder if that could simply be addressed in repoman itself ? we could add a "repoman push" command that compared the remote branch to the local one to find out all the packages that have been updated, go into each one and rebuild just the Manifest, and then do the `git push`. -mike