GNU bug report logs - #56444
Gitolite home directory permissions

Previous Next

Package: guix;

Reported by: Evgeny Pisemsky <evgeny <at> pisemsky.com>

Date: Thu, 7 Jul 2022 21:36:01 UTC

Severity: normal

Done: "Thompson, David" <dthompson2 <at> worcester.edu>

Bug is archived. No further changes may be made.

To add a comment to this bug, you must first unarchive it, by sending
a message to control AT debbugs.gnu.org, with unarchive 56444 in the body.
You can then email your comments to 56444 AT debbugs.gnu.org in the normal way.

Toggle the display of automated, internal messages from the tracker.

View this report as an mbox folder, status mbox, maintainer mbox


Report forwarded to bug-guix <at> gnu.org:
bug#56444; Package guix. (Thu, 07 Jul 2022 21:36:01 GMT) Full text and rfc822 format available.

Acknowledgement sent to Evgeny Pisemsky <evgeny <at> pisemsky.com>:
New bug report received and forwarded. Copy sent to bug-guix <at> gnu.org. (Thu, 07 Jul 2022 21:36:01 GMT) Full text and rfc822 format available.

Message #5 received at submit <at> debbugs.gnu.org (full text, mbox):

From: Evgeny Pisemsky <evgeny <at> pisemsky.com>
To: bug-guix <at> gnu.org
Subject: Gitolite home directory permissions
Date: Fri, 08 Jul 2022 00:35:10 +0300
  Hello!

  I wanted to serve public repositories from gitolite using git-daemon.

  I tried the following configuration of services:

  ┌────
  │ (define git-daemon
  │   (git-daemon-service
  │    #:config (git-daemon-configuration
  │              (base-path "/var/lib/gitolite/repositories"))))
  │ 
  │ (define gitolite
  │   (service gitolite-service-type
  │            (gitolite-configuration
  │             (admin-pubkey user-key)
  │             (group "git-daemon")
  │             (rc-file (gitolite-rc-file
  │                       (umask #o0027))))))
  └────

  However despite setting the umask the `/var/lib/gitolite' directory
  gets the `drwx------' permissions that makes it inaccessible for the
  git-daemon.

  If I set the group permissions manually and restart the git-daemon
  everything works fine until the next system reboot, which resets the
  permissions to the above value.




Information forwarded to bug-guix <at> gnu.org:
bug#56444; Package guix. (Fri, 08 Jul 2022 08:11:02 GMT) Full text and rfc822 format available.

Message #8 received at 56444 <at> debbugs.gnu.org (full text, mbox):

From: Evgeny Pisemsky <evgeny <at> pisemsky.com>
To: 56444 <at> debbugs.gnu.org
Subject: Re: bug#56444: Acknowledgement (Gitolite home directory permissions)
Date: Fri, 08 Jul 2022 11:10:42 +0300
After some digging I came up to the procedure `activate-users+groups' in
the file `gnu/build/activation.scm' and found the following lines:

┌────
│ ;; Always set ownership and permissions for home directories of system
│ ;; accounts.  If a service needs looser permissions on its home
│ ;; directories, it can always chmod it in an activation snippet.
│ (chown home (passwd:uid pwd) (passwd:gid pwd))
│ (chmod home #o700)))
└────

So it looks like the case for gitolite activation procedure - it should
chmod the home directory with respect to the umask value.




Information forwarded to bug-guix <at> gnu.org:
bug#56444; Package guix. (Fri, 19 Aug 2022 13:33:01 GMT) Full text and rfc822 format available.

Message #11 received at 56444 <at> debbugs.gnu.org (full text, mbox):

From: "Thompson, David" <dthompson2 <at> worcester.edu>
To: 56444 <at> debbugs.gnu.org
Subject: Patch to fix Gitolite home directory permissions
Date: Fri, 19 Aug 2022 09:32:20 -0400
[Message part 1 (text/plain, inline)]
Hi Evgeny and whoever wants to do some code review,

I have been experiencing this same issue for years now and have been
manually chmod'ing /var/lib/gitolite every time I upgraded because I didn't
understand what was happening.  All this time I thought I had gitolite
misconfigured, that maybe I didn't have its umask config set properly, but
it was Guix all along! In this case that's great, because it makes the
problem easy for me to fix.  Patch attached.  It works like a charm for my
personal git server (https://git.dthompson.us), /var/lib/gitolite was 700
before a system reconfigure, and 750 afterwards.

Big thanks to Evgeny for making a bug report and doing the research to
identify the root cause!

- Dave
[Message part 2 (text/html, inline)]
[0001-services-gitolite-Relax-permissions-on-service-user-.patch (text/x-patch, attachment)]

Information forwarded to bug-guix <at> gnu.org:
bug#56444; Package guix. (Tue, 23 Aug 2022 12:42:01 GMT) Full text and rfc822 format available.

Message #14 received at 56444 <at> debbugs.gnu.org (full text, mbox):

From: Maxime Devos <maximedevos <at> telenet.be>
To: "Thompson, David" <dthompson2 <at> worcester.edu>, 56444 <at> debbugs.gnu.org
Subject: Re: bug#56444: Patch to fix Gitolite home directory permissions
Date: Tue, 23 Aug 2022 14:41:19 +0200
[Message part 1 (text/plain, inline)]
On 19-08-2022 15:32, Thompson, David wrote:
> Hi Evgeny and whoever wants to do some code review,
>
> I have been experiencing this same issue for years now and have been 
> manually chmod'ing /var/lib/gitolite every time I upgraded because I 
> didn't understand what was happening.  All this time I thought I had 
> gitolite misconfigured, that maybe I didn't have its umask config set 
> properly, but it was Guix all along! In this case that's great, 
> because it makes the problem easy for me to fix.  Patch attached.  It 
> works like a charm for my personal git server 
> (https://git.dthompson.us), /var/lib/gitolite was 700 before a system 
> reconfigure, and 750 afterwards.
>
> Big thanks to Evgeny for making a bug report and doing the research to 
> identify the root cause!
>
> - Dave

During "guix system reconfigure", there is now window where the 
directory temporarily has incorrect bits and hence if gitolite is 
restarted during that time it will presumably fail.  Could a 
'home-permission-bits' or such field be added instead to <user-account> 
to make things atomic?

Greetings,
Maxime.

[OpenPGP_0x49E3EE22191725EE.asc (application/pgp-keys, attachment)]
[OpenPGP_signature (application/pgp-signature, attachment)]

Information forwarded to bug-guix <at> gnu.org:
bug#56444; Package guix. (Tue, 23 Aug 2022 14:47:02 GMT) Full text and rfc822 format available.

Message #17 received at 56444 <at> debbugs.gnu.org (full text, mbox):

From: "Thompson, David" <dthompson2 <at> worcester.edu>
To: Maxime Devos <maximedevos <at> telenet.be>
Cc: 56444 <at> debbugs.gnu.org
Subject: Re: bug#56444: Patch to fix Gitolite home directory permissions
Date: Tue, 23 Aug 2022 10:45:53 -0400
[Message part 1 (text/plain, inline)]
Hi Maxime,

On Tue, Aug 23, 2022, 8:41 AM Maxime Devos <maximedevos <at> telenet.be> wrote:

>
> During "guix system reconfigure", there is now window where the
> directory temporarily has incorrect bits and hence if gitolite is
> restarted during that time it will presumably fail.  Could a
> 'home-permission-bits' or such field be added instead to <user-account>
> to make things atomic?
>

That would be a nice improvement to backlog now that such a use case has
emerged. However, I think for our immediate needs this one line patch,
while imperfect, solves a longstanding problem adequately. So how about
merging it, closing this bug, and opening a new bug for the system level
improvement?

- Dave

>
[Message part 2 (text/html, inline)]

Information forwarded to bug-guix <at> gnu.org:
bug#56444; Package guix. (Mon, 29 Aug 2022 12:51:01 GMT) Full text and rfc822 format available.

Message #20 received at 56444 <at> debbugs.gnu.org (full text, mbox):

From: "Thompson, David" <dthompson2 <at> worcester.edu>
To: Maxime Devos <maximedevos <at> telenet.be>
Cc: 56444 <at> debbugs.gnu.org
Subject: Re: bug#56444: Patch to fix Gitolite home directory permissions
Date: Mon, 29 Aug 2022 08:49:54 -0400
[Message part 1 (text/plain, inline)]
Hi again Maxime,

What do you think of my proposal?  Do any other maintainers care to chime
in here?

- Dave

On Tue, Aug 23, 2022 at 10:45 AM Thompson, David <dthompson2 <at> worcester.edu>
wrote:

> Hi Maxime,
>
> On Tue, Aug 23, 2022, 8:41 AM Maxime Devos <maximedevos <at> telenet.be> wrote:
>
>>
>> During "guix system reconfigure", there is now window where the
>> directory temporarily has incorrect bits and hence if gitolite is
>> restarted during that time it will presumably fail.  Could a
>> 'home-permission-bits' or such field be added instead to <user-account>
>> to make things atomic?
>>
>
> That would be a nice improvement to backlog now that such a use case has
> emerged. However, I think for our immediate needs this one line patch,
> while imperfect, solves a longstanding problem adequately. So how about
> merging it, closing this bug, and opening a new bug for the system level
> improvement?
>
> - Dave
>
[Message part 2 (text/html, inline)]

Information forwarded to bug-guix <at> gnu.org:
bug#56444; Package guix. (Mon, 29 Aug 2022 12:53:02 GMT) Full text and rfc822 format available.

Message #23 received at 56444 <at> debbugs.gnu.org (full text, mbox):

From: Maxime Devos <maximedevos <at> telenet.be>
To: "Thompson, David" <dthompson2 <at> worcester.edu>
Cc: 56444 <at> debbugs.gnu.org
Subject: Re: bug#56444: Patch to fix Gitolite home directory permissions
Date: Mon, 29 Aug 2022 14:52:38 +0200
[Message part 1 (text/plain, inline)]
On 29-08-2022 14:49, Thompson, David wrote:
> Hi again Maxime,
>
> What do you think of my proposal?  Do any other maintainers care to 
> chime in here?
>
> - Dave

Backlogged thing have a tendency to be backlogged indefinitely, and my 
proposal for a home-permissions-bits seems straightforward and simple to 
me, so I would rather not trade a bug for another bug but rather do a 
proper fix.

Greetings,
Maxime.
[OpenPGP_0x49E3EE22191725EE.asc (application/pgp-keys, attachment)]
[OpenPGP_signature (application/pgp-signature, attachment)]

Information forwarded to bug-guix <at> gnu.org:
bug#56444; Package guix. (Mon, 29 Aug 2022 12:59:02 GMT) Full text and rfc822 format available.

Message #26 received at 56444 <at> debbugs.gnu.org (full text, mbox):

From: "Thompson, David" <dthompson2 <at> worcester.edu>
To: Maxime Devos <maximedevos <at> telenet.be>
Cc: 56444 <at> debbugs.gnu.org
Subject: Re: [EXT] Re: bug#56444: Patch to fix Gitolite home directory
 permissions
Date: Mon, 29 Aug 2022 08:57:51 -0400
[Message part 1 (text/plain, inline)]
Hi Maxime,

I disagree.  I believe we shouldn't let perfect be the enemy of the good.
I haven't sent patches to Guix in quite some time, but I've never felt
roadblocked like this and it is concerning to me.

Can any other maintainers please chime in here?

- Dave

On Mon, Aug 29, 2022 at 8:52 AM Maxime Devos <maximedevos <at> telenet.be> wrote:

>
> On 29-08-2022 14:49, Thompson, David wrote:
> > Hi again Maxime,
> >
> > What do you think of my proposal?  Do any other maintainers care to
> > chime in here?
> >
> > - Dave
>
> Backlogged thing have a tendency to be backlogged indefinitely, and my
> proposal for a home-permissions-bits seems straightforward and simple to
> me, so I would rather not trade a bug for another bug but rather do a
> proper fix.
>
> Greetings,
> Maxime.
>
[Message part 2 (text/html, inline)]

Information forwarded to bug-guix <at> gnu.org:
bug#56444; Package guix. (Mon, 29 Aug 2022 13:10:01 GMT) Full text and rfc822 format available.

Message #29 received at 56444 <at> debbugs.gnu.org (full text, mbox):

From: Maxime Devos <maximedevos <at> telenet.be>
To: "Thompson, David" <dthompson2 <at> worcester.edu>
Cc: 56444 <at> debbugs.gnu.org
Subject: Re: [EXT] Re: bug#56444: Patch to fix Gitolite home directory
 permissions
Date: Mon, 29 Aug 2022 15:09:23 +0200
[Message part 1 (text/plain, inline)]
On 29-08-2022 14:57, Thompson, David wrote:
> Hi Maxime,
>
> I disagree.  I believe we shouldn't let perfect be the enemy of the 
> good.  I haven't sent patches to Guix in quite some time, but I've 
> never felt roadblocked like this and it is concerning to me.

It's almost trivial to implement 'the perfect' here, almost no more 
effort than your partial solution; there is no "perfect enemy of the 
good" situation here -- "perfect enemy of the good" only applies when 
"the perfect" is significantly harder / more effort than "the good", but 
that's not the case here.

Given that a proper fix is very easy, simple and low-effort and 
furthermore, it is even known what form the proper fix would take (see: 
extra field, + adjust procedure in (gnu build activation) slightly), 
there aren't any roadblocks except for an apparent refusal by you to 
invest a little extra effort.

If you genuinely find it actually hard to implement, please tell so and 
I can give you some pointers on what procedures appear to be need to be 
modified. Currently, your response appears to be made in bad faith t me.

Greetings,
Maxime

[OpenPGP_0x49E3EE22191725EE.asc (application/pgp-keys, attachment)]
[OpenPGP_signature (application/pgp-signature, attachment)]

Information forwarded to bug-guix <at> gnu.org:
bug#56444; Package guix. (Mon, 29 Aug 2022 13:12:01 GMT) Full text and rfc822 format available.

Message #32 received at 56444 <at> debbugs.gnu.org (full text, mbox):

From: Maxime Devos <maximedevos <at> telenet.be>
To: "Thompson, David" <dthompson2 <at> worcester.edu>
Cc: 56444 <at> debbugs.gnu.org
Subject: Re: [EXT] Re: bug#56444: Patch to fix Gitolite home directory
 permissions
Date: Mon, 29 Aug 2022 15:11:19 +0200
[Message part 1 (text/plain, inline)]
On 29-08-2022 14:57, Thompson, David wrote:
> [...]
> Can any other maintainers please chime in here?

To correct a misunderstanding, I'm not a maintainer, at least if you 
meant "maintainer" in the same sense as used at 
<https://guix.gnu.org/en/blog/2022/gnu-guix-maintainer-rotation/>.

Greetings,
Maxime


[OpenPGP_0x49E3EE22191725EE.asc (application/pgp-keys, attachment)]
[OpenPGP_signature (application/pgp-signature, attachment)]

Information forwarded to bug-guix <at> gnu.org:
bug#56444; Package guix. (Mon, 29 Aug 2022 13:20:02 GMT) Full text and rfc822 format available.

Message #35 received at 56444 <at> debbugs.gnu.org (full text, mbox):

From: Maxime Devos <maximedevos <at> telenet.be>
To: "Thompson, David" <dthompson2 <at> worcester.edu>
Cc: 56444 <at> debbugs.gnu.org
Subject: Re: [EXT] Re: bug#56444: Patch to fix Gitolite home directory
 permissions
Date: Mon, 29 Aug 2022 15:19:49 +0200
[Message part 1 (text/plain, inline)]
On 29-08-2022 14:57, Thompson, David wrote:

> I disagree.  I believe we shouldn't let perfect be the enemy of the good.

I don't think your patch counts as "good" here -- while fixing the bug 
counts as "good", you are at the same time introducing a new bug (the 
non-atomicity), which is bad.  You would have to weigh the goodness and 
the badness to end up with an overall "good" (or maybe "bad", depending 
on the conclusion), but I'd think that the time required to do such a 
weighing is better spent by doing a tiny bit of extra effort to 
implement the new field (it should be very low effort, see other response).

Greetings,
Maxime.
[OpenPGP_0x49E3EE22191725EE.asc (application/pgp-keys, attachment)]
[OpenPGP_signature (application/pgp-signature, attachment)]

Information forwarded to bug-guix <at> gnu.org:
bug#56444; Package guix. (Mon, 29 Aug 2022 13:32:01 GMT) Full text and rfc822 format available.

Message #38 received at 56444 <at> debbugs.gnu.org (full text, mbox):

From: "Thompson, David" <dthompson2 <at> worcester.edu>
To: Maxime Devos <maximedevos <at> telenet.be>
Cc: 56444 <at> debbugs.gnu.org
Subject: Re: [EXT] Re: [EXT] Re: bug#56444: Patch to fix Gitolite home
 directory permissions
Date: Mon, 29 Aug 2022 09:30:58 -0400
[Message part 1 (text/plain, inline)]
On Mon, Aug 29, 2022 at 9:19 AM Maxime Devos <maximedevos <at> telenet.be> wrote:

> On 29-08-2022 14:57, Thompson, David wrote:
>
> > I disagree.  I believe we shouldn't let perfect be the enemy of the good.
>
> I don't think your patch counts as "good" here -- while fixing the bug
> counts as "good", you are at the same time introducing a new bug (the
> non-atomicity), which is bad.  You would have to weigh the goodness and
> the badness to end up with an overall "good" (or maybe "bad", depending
> on the conclusion), but I'd think that the time required to do such a
> weighing is better spent by doing a tiny bit of extra effort to
> implement the new field (it should be very low effort, see other response).
>

My patch has a very limited scope of only changing the gitolite service.
Your proposal has a much greater scope of modifying a core structure used
for system configuration.  The new bug you mention is only bad in a
theoretical sense.  In practice, the permission bits are misconfigured for
a blip of time during system reconfiguration, which is a lot better than
being misconfigured all the time which is the status quo.  It's the
difference between a gitolite that works nicely with cgit/gitweb and one
that doesn't. I agree that it's a good goal to improve atomicity and I
think making <user-account> more general to allow for different permission
bits on the home directory is a good idea, but I see it as one step removed
from fixing this particular bug.  My patch follows the recommended approach
outlined in a comment in (gnu build activation) written by Ludovic in 2019:

      ;; Always set ownership and permissions for home directories of system
      ;; accounts.  If a service needs looser permissions on its home
      ;; directories, it can always chmod it in an activation snippet.

- Dave
[Message part 2 (text/html, inline)]

Information forwarded to bug-guix <at> gnu.org:
bug#56444; Package guix. (Mon, 29 Aug 2022 13:45:02 GMT) Full text and rfc822 format available.

Message #41 received at 56444 <at> debbugs.gnu.org (full text, mbox):

From: Maxime Devos <maximedevos <at> telenet.be>
To: "Thompson, David" <dthompson2 <at> worcester.edu>
Cc: 56444 <at> debbugs.gnu.org
Subject: Re: [EXT] Re: [EXT] Re: bug#56444: Patch to fix Gitolite home
 directory permissions
Date: Mon, 29 Aug 2022 15:44:22 +0200
[Message part 1 (text/plain, inline)]
On 29-08-2022 15:30, Thompson, David wrote:
>
> On Mon, Aug 29, 2022 at 9:19 AM Maxime Devos <maximedevos <at> telenet.be> 
> wrote:
>
>     On 29-08-2022 14:57, Thompson, David wrote:
>
>     > I disagree.  I believe we shouldn't let perfect be the enemy of
>     the good.
>
>     I don't think your patch counts as "good" here -- while fixing the
>     bug
>     counts as "good", you are at the same time introducing a new bug (the
>     non-atomicity), which is bad.  You would have to weigh the
>     goodness and
>     the badness to end up with an overall "good" (or maybe "bad",
>     depending
>     on the conclusion), but I'd think that the time required to do such a
>     weighing is better spent by doing a tiny bit of extra effort to
>     implement the new field (it should be very low effort, see other
>     response).
>
>
> My patch has a very limited scope of only changing the gitolite 
> service.  Your proposal has a much greater scope of modifying a core 
> structure used for system configuration.
It is a greater scope, but it's not really more effort.
> The new bug you mention is only bad in a theoretical sense.  In 
> practice, the permission bits are misconfigured for a blip of time 
> during system reconfiguration, which is a lot better than being 
> misconfigured all the time which is the status quo.  It's the 
> difference between a gitolite that works nicely with cgit/gitweb and 
> one that doesn't. I agree that it's a good goal to improve atomicity 
> and I think making <user-account> more general to allow for different 
> permission bits on the home directory is a good idea, but I see it as 
> one step removed from fixing this particular bug.

The time required to analyse it as "just theoretical" could have been 
spent doing the tiny bit of extra effort.

Theoretical bugs like these are especially nasty, if you encounter them 
there is often not a clue what the cause is unless you already know what 
to look for.

>   My patch follows the recommended approach outlined in a comment in 
> (gnu build activation) written by Ludovic in 2019:
>
>       ;; Always set ownership and permissions for home directories of 
> system
>       ;; accounts.  If a service needs looser permissions on its home
>       ;; directories, it can always chmod it in an activation snippet.

I've refuted that recommendation (albeit without explicitly mentioning 
that paragraph), that paragraph is a bug, see my previous comments on 
non-atomicity. Please remove it in the v2 patch.

As there appears to be a lack of willingness to invest the tiniest bit 
of extra effort to implement a proper patch, and given the length of 
previous discussion, I think my time will be better spent continuing 
fixing things in Guix rather than any failing attempts at convincing 
you. As such, I'll stop responding until a v2 or questions on how to 
implement a v2, but that cannot be interpreted as me agreeing with you.

Greetings,
Maxime

[Message part 2 (text/html, inline)]
[OpenPGP_0x49E3EE22191725EE.asc (application/pgp-keys, attachment)]
[OpenPGP_signature (application/pgp-signature, attachment)]

Information forwarded to bug-guix <at> gnu.org:
bug#56444; Package guix. (Mon, 29 Aug 2022 14:01:02 GMT) Full text and rfc822 format available.

Message #44 received at 56444 <at> debbugs.gnu.org (full text, mbox):

From: "Thompson, David" <dthompson2 <at> worcester.edu>
To: Maxime Devos <maximedevos <at> telenet.be>
Cc: 56444 <at> debbugs.gnu.org
Subject: Re: [EXT] Re: [EXT] Re: [EXT] Re: bug#56444: Patch to fix Gitolite
 home directory permissions
Date: Mon, 29 Aug 2022 09:59:57 -0400
[Message part 1 (text/plain, inline)]
On Mon, Aug 29, 2022 at 9:44 AM Maxime Devos <maximedevos <at> telenet.be> wrote:

> As there appears to be a lack of willingness to invest the tiniest bit of
> extra effort to implement a proper patch, and given the length of previous
> discussion, I think my time will be better spent continuing fixing things
> in Guix rather than any failing attempts at convincing you. As such, I'll
> stop responding until a v2 or questions on how to implement a v2, but that
> cannot be interpreted as me agreeing with you.
>

From my perspective, there is a lack of willingness on your end to accept
imperfect solutions that have low impact.  In projects I maintain and in
the professional world, I try to acknowledge the work someone has already
done and accept patches/pull requests that are not ideal but solve real
world problems.  I'd be happy to do some follow-up work to make
system-level improvements when I have the time to properly test a change
that impacts literally everyone that uses the Guix distro, but it would
have been great to have improved the gitolite service in the meantime.
If/when I get around to doing this work, I'll send along a patch.

To any other maintainer or core dev: If any of you wants to sign off on
this patch as-is, I'll merge it.  I have commit access.

- Dave
[Message part 2 (text/html, inline)]

Information forwarded to bug-guix <at> gnu.org:
bug#56444; Package guix. (Mon, 29 Aug 2022 21:38:02 GMT) Full text and rfc822 format available.

Message #47 received at 56444 <at> debbugs.gnu.org (full text, mbox):

From: zimoun <zimon.toutoune <at> gmail.com>
To: "Thompson, David" <dthompson2 <at> worcester.edu>, Maxime Devos
 <maximedevos <at> telenet.be>
Cc: 56444 <at> debbugs.gnu.org
Subject: Re: bug#56444: [EXT] Re: [EXT] Re: [EXT] Re: bug#56444: Patch to
 fix Gitolite home directory permissions
Date: Mon, 29 Aug 2022 23:05:59 +0200
Hi David,

On lun., 29 août 2022 at 09:59, "Thompson, David" <dthompson2 <at> worcester.edu> wrote:

> To any other maintainer or core dev: If any of you wants to sign off on
> this patch as-is, I'll merge it.  I have commit access.

I am not maintainer, Maxime neither AFAIK, and I am not a “core dev“
neither.  For what it is worth, your patch LGTM; please push.

The patch seems a pragmatic workaround waiting an implementation more
robust as Maxime has proposed.  Feel free to send here or open another
submission for this upcoming “better” fix.

BTW, unrelated but Gitolite in Guix requires some love.  If you have
time, a look at bug#25957 [1] would be appreciated. :-)

Cheers,
simon

1: <http://issues.guix.gnu.org/issue/25957>




Information forwarded to bug-guix <at> gnu.org:
bug#56444; Package guix. (Tue, 30 Aug 2022 15:21:04 GMT) Full text and rfc822 format available.

Message #50 received at 56444 <at> debbugs.gnu.org (full text, mbox):

From: Ludovic Courtès <ludo <at> gnu.org>
To: "Thompson, David" <dthompson2 <at> worcester.edu>
Cc: 56444 <at> debbugs.gnu.org, Maxime Devos <maximedevos <at> telenet.be>
Subject: Re: bug#56444: Gitolite home directory permissions
Date: Tue, 30 Aug 2022 17:20:26 +0200
Hi there!

Please let’s avoid guessing each other’s willingness to do one thing or
another.

I agree with David that we should accept simple local fixes like this
one, while keeping the “better solution” in sight.  It’s a tradeoff, and
the goal is to make sure we can all move forward.

So I’m all for merging this Gitolite activation patch that David posted
right away; I think you can go ahead, David.

Adding ‘home-permission’ to <user-account> as Maxime suggested also
sounds like a welcome improvement to me, but I think it’s fine to do
that separately.

Thanks,
Ludo’.




Information forwarded to bug-guix <at> gnu.org:
bug#56444; Package guix. (Tue, 30 Aug 2022 16:41:01 GMT) Full text and rfc822 format available.

Message #53 received at 56444 <at> debbugs.gnu.org (full text, mbox):

From: "Thompson, David" <dthompson2 <at> worcester.edu>
To: Ludovic Courtès <ludo <at> gnu.org>
Cc: 56444 <at> debbugs.gnu.org, 56444-done <at> debbugs.gnu.org,
 Maxime Devos <maximedevos <at> telenet.be>
Subject: Re: [EXT] Re: bug#56444: Gitolite home directory permissions
Date: Tue, 30 Aug 2022 12:39:47 -0400
[Message part 1 (text/plain, inline)]
Hi Ludo,

On Tue, Aug 30, 2022 at 11:20 AM Ludovic Courtès <ludo <at> gnu.org> wrote:

> Hi there!
>
> Please let’s avoid guessing each other’s willingness to do one thing or
> another.
>
> I agree with David that we should accept simple local fixes like this
> one, while keeping the “better solution” in sight.  It’s a tradeoff, and
> the goal is to make sure we can all move forward.
>
> So I’m all for merging this Gitolite activation patch that David posted
> right away; I think you can go ahead, David.
>
> Adding ‘home-permission’ to <user-account> as Maxime suggested also
> sounds like a welcome improvement to me, but I think it’s fine to do
> that separately.
>

Patch pushed.

I will follow up with a new bug report (and a patch later when I have some
time to actually write code) to capture the improvements to <user-account>
so we can discuss any potential issues or gotchas that might come as a
result.

Thanks,

- Dave
[Message part 2 (text/html, inline)]

Reply sent to "Thompson, David" <dthompson2 <at> worcester.edu>:
You have taken responsibility. (Tue, 30 Aug 2022 16:41:02 GMT) Full text and rfc822 format available.

Notification sent to Evgeny Pisemsky <evgeny <at> pisemsky.com>:
bug acknowledged by developer. (Tue, 30 Aug 2022 16:41:02 GMT) Full text and rfc822 format available.

Information forwarded to bug-guix <at> gnu.org:
bug#56444; Package guix. (Tue, 30 Aug 2022 18:32:02 GMT) Full text and rfc822 format available.

Message #61 received at 56444 <at> debbugs.gnu.org (full text, mbox):

From: david larsson <david.larsson <at> selfhosted.xyz>
To: Ludovic Courtès <ludo <at> gnu.org>
Cc: 56444 <at> debbugs.gnu.org, Maxime Devos <maximedevos <at> telenet.be>, "Thompson,
 David" <dthompson2 <at> worcester.edu>,
 bug-Guix <bug-guix-bounces+someone=selfhosted.xyz <at> gnu.org>
Subject: Re: bug#56444: Gitolite home directory permissions
Date: Tue, 30 Aug 2022 20:31:02 +0200
On 2022-08-30 17:20, Ludovic Courtès wrote:

> I agree with David that we should accept simple local fixes like this
> one, while keeping the “better solution” in sight.  It’s a tradeoff, 
> and
> the goal is to make sure we can all move forward.

FWIW: I think that writing comments like ;; KLUDGE: better to do X. etc. 
is a simple way to keep things in sight, and can or should be added 
before pushing patches when so is relevant. For those using emacs then 
with emacs-magit-todos you get all such TODO-things visible every time 
when checking ma(git) status from inside emacs., which is nice IMO.

Regards,
David Larsson




bug archived. Request was from Debbugs Internal Request <help-debbugs <at> gnu.org> to internal_control <at> debbugs.gnu.org. (Wed, 28 Sep 2022 11:24:06 GMT) Full text and rfc822 format available.

This bug report was last modified 1 year and 182 days ago.

Previous Next


GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.