/[secure-testing]/doc/how-to-DTSA
ViewVC logotype

Diff of /doc/how-to-DTSA

Parent Directory Parent Directory | Revision Log Revision Log | View Patch Patch

revision 7471 by nion, Sun Dec 2 17:57:49 2007 UTC revision 8549 by micah, Thu Apr 17 14:48:03 2008 UTC
# Line 76  You can compare against a package in sta Line 76  You can compare against a package in sta
76  LANG=en_GB ~joey/bin/diffpackages -d stable clamav  LANG=en_GB ~joey/bin/diffpackages -d stable clamav
77    
78  Otherwise do some debdiffing to ensure that the filelists and  Otherwise do some debdiffing to ensure that the filelists and
79  dependencies look correct.  dependencies look correct. You can do this by downloading the
80    binary packages from klecker and the compare them, like the following:
81    
82  You can install the packages in the security archive with something           for i in *lenny1*.deb; do
83  like:               oldpkg=$(echo $i | sed -e 's/+lenny1//')
84                 debdiff debian.netcologne.de/debian/pool/main/c/cupsys/$oldpkg $i
85             done|less
86    
87    If everything looks good, you can install the packages in the security
88    archive with something like:
89    
90  dak new-security-install DTSA-36-1 mydns_1.1.0-7+lenny1_*.changes  dak new-security-install DTSA-36-1 mydns_1.1.0-7+lenny1_*.changes
91    
# Line 88  However, every identifier can be used on Line 94  However, every identifier can be used on
94  need a second run, use DTSA-36-1a or DTSA-36-2.  need a second run, use DTSA-36-1a or DTSA-36-2.
95    
96  "dak new-security-install" gives you an advisory template. This is not  "dak new-security-install" gives you an advisory template. This is not
97  used for DTSAs. Ignore it.  used for DTSAs. Ignore it by choosing Approve to continue, if everything
98    seems ok. If for some reason the dak run is not what you want, (for example
99    not all the required arches are listed), you can just choose Quit to abort
100    the dak run. Do not hit control-c or there will be problems. Quit will
101    allow you to re-run "dak new-security-install" again with the same DTSA
102    number without problems.
103    
104    The dak options as they are presented are confusing:
105    Approve, [E]dit advisory, Show advisory, Reject, Quit?
106    
107    Each of those can be triggered by their first letter (Q for quit, etc.),
108    its not clear why [E]dit looks different.
109    
110  After the dak run, the new packages appear on security.debian.org and  After the dak run, the new packages appear on security.debian.org and
111  the mirrors are notified. You should get a mail that the packages are  the mirrors are notified. You should get a mail that the packages are
# Line 99  installed in testing-proposed-updates. Line 116  installed in testing-proposed-updates.
116  Announcing  Announcing
117  ==========  ==========
118    
119    Currently, we are not doing DTSA announcements, and instead letting the
120    scripts include them in the automatic security update emails sent to
121    secure-testing-announce. However, the below information is kept for
122    posterity.
123    
124  If there has been a new stable release since the last DTSA, change the  If there has been a new stable release since the last DTSA, change the
125  code names in all the scripts and templates ;-)  code names in all the scripts and templates ;-)
126    
Legend:
Removed from v.7471  
changed lines
  Added in v.8549
  ViewVC Help
Powered by ViewVC 1.1.5