Re: t2u in the archive

To: Aigars Mahinovs <aigarius@debian.org>
Cc: Joerg Jaspert <joerg@debian.org>, debian-vote@lists.debian.org, ftpmaster@debian.org
Subject: Re: t2u in the archive
From: Russ Allbery <rra@debian.org>
Date: Sun, 30 Jun 2024 11:58:55 -0700
Message-id: <[🔎] 87sewu2r68.fsf@hope.eyrie.org>
In-reply-to: <[🔎] CABpYwDX73cT1RmxWAEmjOOky3s80esFRBZcvZR_wxEC4mDajcw@mail.gmail.com> (Aigars Mahinovs's message of "Sun, 30 Jun 2024 19:45:15 +0200")
References: <[🔎] 87h6dehn4x.fsf@melete.silentflame.com> <[🔎] 874j9bjqdb.fsf@ganneff.de> <[🔎] 87ikxq4e3i.fsf@hope.eyrie.org> <[🔎] CABpYwDViOC=uaghCmNUUaQ4pjgwhj4RCjQ_9zx1FaZy+uLGEDQ@mail.gmail.com> <[🔎] 87a5j249xi.fsf@hope.eyrie.org> <[🔎] CABpYwDX73cT1RmxWAEmjOOky3s80esFRBZcvZR_wxEC4mDajcw@mail.gmail.com>

Aigars Mahinovs <aigarius@debian.org> writes:

> In contrast, having a tarball of the git state *before* t2u starts its
> work would provide a tarball that *can* be verified against the
> checksums from the first file. That will give you a clear data point -
> t2u started its work with the exactly the same workspace as the
> maintainer signed. And will provide a frozen copy of that starting
> workspace in the archive independent of the (more complex) dgit service.

Oh, okay, that's what I thought Joerg was saying, and I misunderstood your
message.  So yes, the two files are technically redundant (I think they're
both signed by t2u since presumably they're in *.changes).

-- 
Russ Allbery (rra@debian.org)              <https://www.eyrie.org/~eagle/>

Reply to:

References:
- General Resolution to deploy tag2upload
  - From: Sean Whitton <spwhitton@spwhitton.name>
- t2u in the archive (was: General Resolution to deploy tag2upload)
  - From: Joerg Jaspert <joerg@debian.org>
- Re: t2u in the archive
  - From: Russ Allbery <rra@debian.org>
- Re: t2u in the archive
  - From: Aigars Mahinovs <aigarius@gmail.com>
- Re: t2u in the archive
  - From: Russ Allbery <rra@debian.org>
- Re: t2u in the archive
  - From: Aigars Mahinovs <aigarius@debian.org>

Prev by Date: Re: Summary of the current state of the tag2upload discussion [and 1 more messages]
Next by Date: Re: t2u in the archive
Previous by thread: Re: t2u in the archive
Next by thread: Re: t2u in the archive
Index(es):
- Date
- Thread