www-infrastructure-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Alex Harui <aha...@adobe.com>
Subject Re: Discussion on enabling users to specify own machines as dynamic hosts
Date Wed, 16 Apr 2014 23:43:56 GMT

On 4/16/14 2:51 PM, "OmPrakash Muppirala" <bigosmallm@gmail.com> wrote:
>>> >There is a big difference between developer builds which can happen
>> > >everywhere (I also build on my own machine), and builds that are
>>sent to
>> > >tester or maybe even voted on.
>> > Are we allowed to vote on bits built by a CI server?
>> >
>> I have raised this question a couple of times, and the answers have been
>> consistent:
>> As a PMC you need to get the source and build it, in order to validate
>> but builds from trusted buildbots can be used for validation. And just
>> apacheCon denver one discussion concluded that build machines where we
>> (asf) do not know whats installed cannot be seen as secure.
>Also, official releases need to be signed by a committer (Release Manager)
>There is a chance that the artifact could get corrupted (maliciously or
>because of a network error) during the download to the committers machine.
>It seems unwise for a committer to sign an artifact that they din't build
That's true, but I think I've seen others argue that if the buildbot has a
checksum on the bits you know it didn't get corrupted coming to your


View raw message