From: "Ludovic Courtès" <ludo@gnu.org>
To: Marius Bakke <marius@gnu.org>
Cc: guix-devel@gnu.org
Subject: Re: Heads-up: hard reset of the 'staging' branch
Date: Fri, 29 May 2020 18:54:42 +0200 [thread overview]
Message-ID: <87mu5qy94d.fsf@gnu.org> (raw)
In-Reply-To: <87ftbn7r7r.fsf@gnu.org> (Marius Bakke's message of "Mon, 25 May 2020 21:24:40 +0200")
Hi!
Marius Bakke <marius@gnu.org> skribis:
> I have good news and bad news. The good news is that the new commit
> verification infrastructure works great. 'make authenticate' will
> verify that all commits were signed by a key that was authorized by
> .guix-authorizations at that point in time.
>
> The bad news is that we need to ensure .guix-authorizations has been
> updated on any branches that new committers/keys will be pushing to.
> Currently the 'staging' branch has one commit
> (8229ce3116c1f522c7157ab2dcd50dc2d765686a) signed by a
> not-yet-authorized key (it had been authorized on 'master' by
> d074f73aacc5a39aed0202d6e45721f53f34a8c0, but that was not yet merged to
> 'staging' at the time).
>
> To fix it properly without leaving a gap where 'make authenticate' will
> fail, we actually need to rewrite the history. Luckily git supports
> rebasing merges(!), and the merge we need was the next commit on that
> branch.
To be clear, it wouldn’t just “leave a gap”: all future commits would
also be rejected. The authentication code ensures that each commit is
signed by one of the keys authorized in its parent commit(s). (See the
latest discussions at <https://issues.guix.gnu.org/22883>.)
This is a good opportunity to remind all fellow committers of the latest
changes in that area, which are summarized here:
https://guix.gnu.org/manual/devel/en/html_node/Commit-Access.html
Please take a look.
SCARY WARNING:
When ‘guix pull’ runs that authentication code, which I hope will be
the case in a few weeks, any such mistakes means that users will not
be able to pull at all, so we all have to be very cautious. If we do
make a mistake, we’ll have to reset the branch to a known-good state,
like you did.
That said… thanks *a lot* for carrying out this rebase, Marius! I’ve
never done a rebase including merge commits before (sounds scary!), and
I learned that ‘git rerere’ is not a typo. Thumbs up!
Ludo’.
next prev parent reply other threads:[~2020-05-29 16:56 UTC|newest]
Thread overview: 6+ messages / expand[flat|nested] mbox.gz Atom feed top
2020-05-25 19:24 Heads-up: hard reset of the 'staging' branch Marius Bakke
2020-05-25 19:50 ` Marius Bakke
2020-05-26 21:57 ` Marius Bakke
2020-05-29 16:54 ` Ludovic Courtès [this message]
2020-05-29 18:18 ` Marius Bakke
2020-06-04 11:53 ` Ludovic Courtès
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
List information: https://guix.gnu.org/
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=87mu5qy94d.fsf@gnu.org \
--to=ludo@gnu.org \
--cc=guix-devel@gnu.org \
--cc=marius@gnu.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this public inbox
https://git.savannah.gnu.org/cgit/guix.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).