On 12/08/2017 08:33 AM, Pierre-Yves Chibon wrote: > On Fri, Dec 08, 2017 at 11:21:10AM -0500, Charalampos Stratakis wrote: >> ----- Original Message ----- >>>> Unless you want to say that the change is somehow wrong, please >>>> don't say that "poeple [...] are clueless", because that's disingenuous. >>> Fair enough... "clueless" was probably not the most appropriate >>> term to use... But I just read this policy. >>> >>> https://fedoraproject.org/wiki/Provenpackager_policy >>> >>> It is very broad... IHMO.. You open a ticket, get three acks >>> a boom! You know have complete access every Fedora package >>> including the kernel... hmm... >>> >> >> The kernel is actually blacklisted from proven packager access, you can't >> make changes there. > > While this used to be true it hasn't been for a while now, I think the last > packages that are restricted are: xulrunner, thunderbird and firefox due to > mozilla's trademark policy on them.
The be 100% clear, there's 2 different kinds of packages that provenpackagers cannot "affect": 1. as mentioned, firefox and thunderbird due to trademark (xulrunner used to be, but it's dead now) provenpackagers cannot commit to these packages. 2. There's a small number of packages in the secure-boot channel that build on secure boot builders, but only if submitted by users with the secure-boot permission. Provenpackages can commit changes to these packages fine, but any builds they do will not be tagged in. These packages currently are: kernel shim grub2 fedora-release fedora-repos pesign. kevin
signature.asc
Description: OpenPGP digital signature
_______________________________________________ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org
