secure-testing/website/uploading.html

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
        <html><head><meta http-equiv="Content-Type" content="text/html; charset=iso8859-1">
        <title>Uploading to testing-security</title>
        <link type="text/css" rel="stylesheet" href="style.css">
        <link rel="shortcut icon" href="http://www.debian.org/favicon.ico">
        </head>
        <body>
        <div align="center">
        <a href="http://www.debian.org/">

     <img src="http://www.debian.org/logos/openlogo-nd-50.png" border="0" hspace="0" vspace="0" alt=""></a>
        <a href="http://www.debian.org/">
     <img src="http://www.debian.org/Pics/debian.png" border="0" hspace="0" vspace="0" alt="Debian Project"></a>
        </div>
        <br />
        <table class="reddy" width="100%">
        <tr>
        <td class="reddy">
    <img src="http://www.debian.org/Pics/red-upperleft.png" align="left" border="0" hspace="0" vspace="0"
     alt="" width="15" height="16"></td>

        <td rowspan="2" class="reddy">Debian testing security team</td>
        <td class="reddy">
    <img src="http://www.debian.org/Pics/red-upperright.png" align="right" border="0" hspace="0" vspace="0"
     alt="" width="16" height="16"></td>
        </tr>
        <tr>
        <td class="reddy">
    <img src="http://www.debian.org/Pics/red-lowerleft.png" align="left" border="0" hspace="0" vspace="0"
     alt="" width="16" height="16"></td>
        <td class="reddy">

    <img src="http://www.debian.org/Pics/red-lowerright.png" align="right" border="0" hspace="0" vspace="0"
     alt="" width="15" height="16"></td>
        </tr>
        </table>

        <p>
        To upload a package to the secure-testing repository, any Debian
        developer may follow this checklist:
        <ol>
                <li><a href="index.html#contact">Contact</a> the team first to avoid duplicate work.</li>
                
                <li>Only upload changes that have already been made in
                unstable and are blocked by reaching testing by some other
                issues. This is both to keep things in sync once the
                new version from unstable reaches testing, and to avoid
                breaking secure-testing too badly with fixes that have not
                been tested first in unstable.</li>
                
                <li>If the orig.tar.gz is already on security.debian.org
                (either in stable-security or in testing-security) 
                don't include it in the upload. If in doubt, ask the team.</li>
                
                <li>Use a version number that is less than the version
                number of the fix in unstable, but greater than the version
                number of the fix in testing (including a possible +b1 for binNMUs).
                For example, if the fix is in a new upstream version 1.0-1 in unstable,
                upload version 1.0-1~lenny1 to testing-security. If the current version
                in testing is 1.2-3 and the fix is backported to this version, upload
                version 1.2-3+lenny1 to testing-security.</li>
                
                <li>Use <em>testing-security</em> as the distribution in the
                changelog.</li>
                
                <li>Build the package in a testing chroot using pbuilder
                so that all the dependencies are ok. Be sure to build with
                the -sa switch to include source, unless the source is
                already in the testing-security archive.</li>
                
                <li>Test the package. Diff the package against the version
                in testing (if backporting fixes). Use debdiff on both
                source and binary packages.</li>
                
                <li>Sign the package. Any Debian developer in the keyring
                can do so.</li>
                
                <li>Upload to <tt>security-master.debian.org</tt>.
                Here is a dput.cf snippet for that upload queue:
                <pre>
                [testing-security]
                fqdn = security-master.debian.org
                method = ftp
                incoming = /pub/OpenSecurityUploadQueue/
                login = anonymous
                </pre>
                Note that this is <em>not</em> the same queue as usually used for stable security.
                </li>
        </ol>


        <p>Information about releasing the packages can be found in the
        <a href="http://svn.debian.org/wsvn/secure-testing/doc/how-to-DTSA?op=file&rev=0&sc=0">howto-DTSA
        file</a> in the SVN repository.
        

<hr><p>$Id: uploading.html 6493 2007-09-04 11:06:04Z nion $</p>
<a href="http://validator.w3.org/check?uri=referer">
    <img border="0" src="http://www.w3.org/Icons/valid-html401" alt="Valid HTML 4.01!" height="31" width="88"></a>
        <a href="http://jigsaw.w3.org/css-validator/check/referer">
    <img border="0" src="http://jigsaw.w3.org/css-validator/images/vcss" alt="Valid CSS!"
     height="31" width="88"></a>

    
</body></html>  
1	stef-guest	6809	<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
2			<html><head><meta http-equiv="Content-Type" content="text/html; charset=iso8859-1">
3			<title>Uploading to testing-security</title>
4			<link type="text/css" rel="stylesheet" href="style.css">
5			<link rel="shortcut icon" href="http://www.debian.org/favicon.ico">
6			</head>
7			<body>
8			<div align="center">
9			<a href="http://www.debian.org/">
10
11			<img src="http://www.debian.org/logos/openlogo-nd-50.png" border="0" hspace="0" vspace="0" alt=""></a>
12			<a href="http://www.debian.org/">
13			<img src="http://www.debian.org/Pics/debian.png" border="0" hspace="0" vspace="0" alt="Debian Project"></a>
14			</div>
15			<br />
16			<table class="reddy" width="100%">
17			<tr>
18			<td class="reddy">
19			<img src="http://www.debian.org/Pics/red-upperleft.png" align="left" border="0" hspace="0" vspace="0"
20			alt="" width="15" height="16"></td>
21
22			<td rowspan="2" class="reddy">Debian testing security team</td>
23			<td class="reddy">
24			<img src="http://www.debian.org/Pics/red-upperright.png" align="right" border="0" hspace="0" vspace="0"
25			alt="" width="16" height="16"></td>
26			</tr>
27			<tr>
28			<td class="reddy">
29			<img src="http://www.debian.org/Pics/red-lowerleft.png" align="left" border="0" hspace="0" vspace="0"
30			alt="" width="16" height="16"></td>
31			<td class="reddy">
32
33			<img src="http://www.debian.org/Pics/red-lowerright.png" align="right" border="0" hspace="0" vspace="0"
34			alt="" width="15" height="16"></td>
35			</tr>
36			</table>
37
38			<p>
39			To upload a package to the secure-testing repository, any Debian
40			developer may follow this checklist:
41			<ol>
42	nion	6865	<li><a href="index.html#contact">Contact</a> the team first to avoid duplicate work.</li>
43	stef-guest	6836
44	stef-guest	6809	<li>Only upload changes that have already been made in
45			unstable and are blocked by reaching testing by some other
46			issues. This is both to keep things in sync once the
47			new version from unstable reaches testing, and to avoid
48			breaking secure-testing too badly with fixes that have not
49			been tested first in unstable.</li>
50	stef-guest	6836
51	stef-guest	6809	<li>If the orig.tar.gz is already on security.debian.org
52			(either in stable-security or in testing-security)
53			don't include it in the upload. If in doubt, ask the team.</li>
54	stef-guest	6836
55	stef-guest	6809	<li>Use a version number that is less than the version
56			number of the fix in unstable, but greater than the version
57			number of the fix in testing (including a possible +b1 for binNMUs).
58			For example, if the fix is in a new upstream version 1.0-1 in unstable,
59			upload version 1.0-1~lenny1 to testing-security. If the current version
60			in testing is 1.2-3 and the fix is backported to this version, upload
61			version 1.2-3+lenny1 to testing-security.</li>
62	stef-guest	6836
63	nion	6865	<li>Use <em>testing-security</em> as the distribution in the
64	stef-guest	6809	changelog.</li>
65	stef-guest	6836
66	stef-guest	6809	<li>Build the package in a testing chroot using pbuilder
67			so that all the dependencies are ok. Be sure to build with
68			the -sa switch to include source, unless the source is
69	stef-guest	6836	already in the testing-security archive.</li>
70
71	stef-guest	6809	<li>Test the package. Diff the package against the version
72			in testing (if backporting fixes). Use debdiff on both
73			source and binary packages.</li>
74	stef-guest	6836
75	stef-guest	6809	<li>Sign the package. Any Debian developer in the keyring
76			can do so.</li>
77	stef-guest	6836
78	stef-guest	6809	<li>Upload to <tt>security-master.debian.org</tt>.
79			Here is a dput.cf snippet for that upload queue:
80			<pre>
81			[testing-security]
82			fqdn = security-master.debian.org
83			method = ftp
84			incoming = /pub/OpenSecurityUploadQueue/
85			login = anonymous
86			</pre>
87			Note that this is <em>not</em> the same queue as usually used for stable security.
88			</li>
89			</ol>
90
91
92	stef-guest	6836	<p>Information about releasing the packages can be found in the
93			<a href="http://svn.debian.org/wsvn/secure-testing/doc/how-to-DTSA?op=file&rev=0&sc=0">howto-DTSA
94			file</a> in the SVN repository.
95
96	stef-guest	6809
97	stef-guest	6837	<hr><p>$Id: uploading.html 6493 2007-09-04 11:06:04Z nion $</p>
98	stef-guest	6809	<a href="http://validator.w3.org/check?uri=referer">
99			<img border="0" src="http://www.w3.org/Icons/valid-html401" alt="Valid HTML 4.01!" height="31" width="88"></a>
100			<a href="http://jigsaw.w3.org/css-validator/check/referer">
101			<img border="0" src="http://jigsaw.w3.org/css-validator/images/vcss" alt="Valid CSS!"
102			height="31" width="88"></a>
103
104
105			</body></html>